[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: Discovering search base
- To: jgr@hplb.hpl.hp.com
- Subject: Re: Discovering search base
- From: Stuart Schmukler <Stuart.Schmukler@ncal.kaiperm.org>
- Date: 01 Dec 1998 16:33:11 -0800
- Alternate-recipient: Allowed
- Cc: openldap-general@openldap.org
- Content-identifier: 066F436648AC701D
- Content-return: Allowed
- Conversion: Allowed
- Disclose-recipients: Prohibited
- Original-encoded-information-types: IA5-Text
- X400-content-type: P2-1988 ( 22 )
- X400-mts-identifier: [/c=US/admd= /prmd=kaiperm/; 066F436648AC701D-ncalMTA]
- X400-originator: Stuart.Schmukler@ncal.kaiperm.org
- X400-received: by mta ncalMTA in /c=US/admd= /prmd=kaiperm/; Relayed; 01 Dec 1998 16:33:11 -0800
- X400-received: by /c=US/admd= /prmd=kaiperm/; Relayed; 01 Dec 1998 16:33:11 -0800
- X400-recipients: non-disclosure;
I figured out that that means do the search:
ldapsearch -h <hostname> -s base -b "" "objectclass=*"
Assuming your LDAP is on the 389 port you'll get something like this:
dn:
objectclass: top
objectclass: passwordPolicy
passwordchange: may
passwordchecksyntax: 0
passwordminlength: 6
passwordexp: 0
passwordmaxage: 8640000
passwordwarning: 86400
passwordkeephistory: 0
passwordinhistory: 6
passwordlockout: 0
passwordmaxfailure: 3
passwordunlock: 1
passwordlockoutduration: 3600
passwordresetduration: 600
namingcontexts: o=Airius.com
namingcontexts: o=Company,c=US
subschemasubentry: cn=schema
supportedcontrol: 2.16.840.1.113730.3.4.2
supportedcontrol: 2.16.840.1.113730.3.4.3
supportedcontrol: 2.16.840.1.113730.3.4.4
supportedcontrol: 2.16.840.1.113730.3.4.5
supportedcontrol: 1.2.840.113556.1.4.473
supportedcontrol: 2.16.840.1.113730.3.4.6
supportedsaslmechanisms: EXTERNAL
supportedldapversion: 2
supportedldapversion: 3
changelog: cn=changlog
firstchangenumber: 1
lastchangenumber: 1
dataversion: directory.Airius.com:389 019981201233446
Yes, this is cool!!! BTW, I did this against the Netscape
Directory Server 3.1, not openLDAP. Does openldap do this?
SaS
jgr@hplb.hpl.hp.com on 12/01/98 10:53:00 AM
To: openldap-general@openldap.org@Internet
cc: (bcc: Stuart Schmukler/REG/KPNC)
Subject: Discovering search base
Hi folks,
I'm fairly new to LDAP so please forgive my ignorance. My question is as
follows:-
After reading the LDAPv3 spec. (rfc 2252 in particular) my understanding was
that the value of the "namingContext" attribute could be used as a search
base? First of all - is this understanding correct - and how on earth do I
query a server for that information? My understanding is that it would be
pretty similar to "altServers" so if anyone knows how that works I would
like to hear.
Thanks,
Jacob
--
Jacob Refstrup
Hewlett Packard Labs, Bristol