Manual Pages for UNIX Darwin command on man slapauth
MyWebUniversity

Manual Pages for UNIX Darwin command on man slapauth

SLAPAUTH(8C) SLAPAUTH(8C)





NAME
       slapauth - Check a list of string-represented IDs for authc/authz.



SYNOPSIS
       //BBiinnaarryyCCaacchhee//OOppeennLLDDAAPP//OOppeennLLDDAAPP-111111~~11//RRoooott//uussrr//ssbbiinn//ssllaappaauutthh   [[-vv]]  [[-dd

       lleevveell]] [[-ff ssllaappdd..ccoonnff]] [[-FF ccoonnffddiirr]] [[-MM mmeecchh]] [[-RR rreeaallmm]]  [[-UU  aauutthhccIIDD]]

       [[-XX aauutthhzzIIDD]] IIDD [[......]]




DESCRIPTION
       SSllaappaauutthh  is used to check the behavior of the slapd in mapping identi-

       ties for authentication and authorization  purposes,  as  specified  in
       ssllaappdd..ccoonnff(5).  It opens the ssllaappdd..ccoonnff(5) configuration file, reads in

       the aauutthhzz-ppoolliiccyy and aauutthhzz-rreeggeexxpp directives, and then  parses  the  IIDD

       list given on the command-line.



OOPPTTIIOONNSS

       -vv     enable verbose mode.



       -dd level

              enable debugging messages as defined by the specified level.


       -ff slapd.conf

              specify an alternative ssllaappdd..ccoonnff(5) file.


       -FF confdir

              specify  a  config  directory.  If both -ff and -FF are specified,

              the config file will be read and converted to  config  directory
              format  and  written  to  the  specified  directory.  If neither
              option is specified, an  attempt  to  read  the  default  config
              directory  will  be made before trying to use the default config
              file. If a valid config directory exists then the default config
              file is ignored.


       -MM mech

              specify a mechanism.


       -RR realm

              specify a realm.


       -UU authcID

              specify an ID to be used as authcID throughout the test session.
              If present, and if no aauutthhzzIIDD is given, the IDs in the  ID  list
              are treated as aauutthhzzIIDD.


       -XX authzID

              specify an ID to be used as authzID throughout the test session.
              If present, and if no aauutthhccIIDD is given, the IDs in the  ID  list
              are  treated  as aauutthhccIIDD.  If both authcID and authzID are given
              via command line switch, the ID list cannot be present.

EEXXAAMMPPLLEESS
       The command


            /BinaryCache/OpenLDAP/OpenLDAP-111~1/Root/usr/sbin/slapauth -f //etc/openldap/slapd.conf -v \

                   -U bjorn -X u:bjensen


       tests whether the user bjorn  can  assume  the  identity  of  the  user
       bjensen provided the directives


            authz-policy from

            authz-regexp "^uid=([^,]+).*,cn=auth$"

                 "ldap:///dc=example,dc=net??sub?uid=$1"


       are defined in ssllaappdd..ccoonnff(5).


SEE ALSO
       llddaapp(3), ssllaappdd(8) ssllaapptteesstt(8)

       "OpenLDAP Administrator's Guide" (http://www.OpenLDAP.org/doc/admin/)

AACCKKNNOOWWLLEEDDGGEEMMEENNTTSS
       OOppeennLLDDAAPP   is   developed   and  maintained  by  The  OpenLDAP  Project
       (http://www.openldap.org/).  OOppeennLLDDAAPP is  derived  from  University  of
       Michigan LDAP 3.3 Release.



OpenLDAP 2.3.27                   2006/08/19                      SLAPAUTH(8C)



Contact us      |      About us      |      Term of use      |       Copyright © 2000-2019 MyWebUniversity.com ™