1 .TH LDAPMODRDN 1 "20 August 2000" "OpenLDAP LDVERSION"
3 .\" Copyright 1998-2000 The OpenLDAP Foundation All Rights Reserved.
4 .\" Copying restrictions apply. See COPYRIGHT/LICENSE.
6 ldapmodrdn \- LDAP rename entry tool
26 .BI \-d \ debuglevel\fR]
36 .BI \-h \ ldaphost\fR]
38 .BI \-p \ ldapport\fR]
40 .BI \-P \ 2\fR\||\|\fI3\fR]
42 .BR \-O \ security-properties ]
48 .BI \-U \ username\fR]
63 is a shell-accessible interface to the
68 opens a connection to an LDAP server, binds, and modifies the RDN of entries.
69 The entry information is read from standard input, from \fIfile\fP through
72 option, or from the command-line pair \fIdn\fP and
77 Remove old RDN values from the entry. Default is to keep old values.
80 Show what would be done, but don't actually change entries. Useful for
81 debugging in conjunction with -v.
84 Use verbose mode, with many diagnostics written to standard output.
87 Use Kerberos authentication instead of simple authentication. It is
88 assumed that you already have a valid ticket granting ticket.
90 must be compiled with Kerberos support for this option to have effect.
93 Same as \-k, but only does step 1 of the Kerberos bind. This is useful
94 when connecting to a slapd and there is no x500dsa.hostname principal
95 registered with your Kerberos servers.
98 Automatically chase referrals.
101 Continuous operation mode. Errors are reported, but ldapmodify
102 will continue with modifications. The default is to exit after
106 Enable manage DSA IT control.
108 makes control critical.
111 Set the LDAP debugging level to \fIdebuglevel\fP.
114 compiled with LDAP_DEBUG defined for this option to have any effect.
117 Read the entry modification information from \fIfile\fP instead of from
118 standard input or the command-line.
121 Use simple authentication instead of SASL.
124 Use the Distinguished Name \fIbinddn\fP to bind to the LDAP directory.
127 Prompt for simple authentication.
128 This is used instead of specifying the password on the command line.
131 Use \fIpasswd\fP as the password for simple authentication.
134 Specify URI(s) referring to the ldap server(s).
137 Specify an alternate host on which the ldap server is running.
138 Deprecated in favor of -H.
141 Specify an alternate TCP port where the ldap server is listening.
142 Deprecated in favor of -H.
144 .BI \-P \ 2\fR\||\|\fI3
145 Specify the LDAP protocol version to use.
147 .BI \-O \ security-properties
148 Specify SASL security properties.
151 Enable SASL Interactive mode. Always prompt. Default is to prompt
155 Enable SASL Quiet mode. Never prompt.
158 Specify the username for SASL bind. The syntax of the username depends on the
159 actual SASL mechanism used.
162 Specify the requested authorization ID for SASL bind.
164 must be one of the following formats:
166 .I <distinguished name>
172 Specify the SASL mechanism to be used for authentication. If it's not
173 specified, the program will choose the best mechanism the server knows.
176 Issue StartTLS (Transport Layer Security) extended operation. If you use
178 , the command will require the operation to be successful.
180 If the command-line arguments \fIdn\fP and \fIrdn\fP are given, \fIrdn\fP
181 will replace the RDN of the entry specified by the DN, \fIdn\fP.
183 Otherwise, the contents of \fIfile\fP (or standard input if
186 flag is given) should consist of one or more entries.
189 Distinguished Name (DN)
190 Relative Distinguished Name (RDN)
193 One or more blank lines may be used to separate each DN/RDN pair.
195 Assuming that the file
197 exists and has the contents:
200 cn=Modify Me, dc=example, dc=com
207 ldapmodify -r -f /tmp/entrymods
210 will change the RDN of the "Modify Me" entry from "Modify Me" to
211 "The New Me" and the old cn, "Modify Me" will be removed.
214 Exit status is 0 if no errors occur. Errors result in a non-zero exit
215 status and a diagnostic message being written to standard error.
225 There is no interactive mode, but there probably should be.
227 The OpenLDAP Project <http://www.openldap.org/>
230 is developed and maintained by The OpenLDAP Project (http://www.openldap.org/).
232 is derived from University of Michigan LDAP 3.3 Release.