1 .TH LDAPWHOAMI 1 "RELEASEDATE" "OpenLDAP LDVERSION"
3 .\" Copyright 1998-2009 The OpenLDAP Foundation All Rights Reserved.
4 .\" Copying restrictions apply. See COPYRIGHT/LICENSE.
6 ldapwhoami \- LDAP who am i? tool
16 .BI \-d \ debuglevel\fR]
24 .BI \-y \ passwdfile\fR]
28 .BI \-h \ ldaphost\fR]
30 .BI \-p \ ldapport\fR]
32 .BI \-O \ security-properties\fR]
51 implements the LDAP "Who Am I?" extended operation.
54 opens a connection to an LDAP server, binds, and performs a whoami
59 Show what would be done, but don't actually perform the whoami operation.
61 debugging in conjunction with \fB\-v\fP.
64 Run in verbose mode, with many diagnostics written to standard output.
67 Set the LDAP debugging level to \fIdebuglevel\fP.
69 must be compiled with LDAP_DEBUG defined for this option to have any effect.
72 Use simple authentication instead of SASL.
75 Use the Distinguished Name \fIbinddn\fP to bind to the LDAP directory.
76 For SASL binds, the server is expected to ignore this value.
79 Prompt for simple authentication.
80 This is used instead of specifying the password on the command line.
83 Use \fIpasswd\fP as the password for simple authentication.
86 Use complete contents of \fIpasswdfile\fP as the password for
87 simple authentication.
90 Specify URI(s) referring to the ldap server(s); only the protocol/host/port
91 fields are allowed; a list of URI, separated by whitespace or commas
95 Specify an alternate host on which the ldap server is running.
96 Deprecated in favor of \fB\-H\fP.
99 Specify an alternate TCP port where the ldap server is listening.
100 Deprecated in favor of \fB\-H\fP.
102 .BI \-O \ security-properties
103 Specify SASL security properties.
106 Enable SASL Interactive mode. Always prompt. Default is to prompt
110 Enable SASL Quiet mode. Never prompt.
113 Specify the authentication ID for SASL bind. The form of the ID
114 depends on the actual SASL mechanism used.
117 Specify the realm of authentication ID for SASL bind. The form of the realm
118 depends on the actual SASL mechanism used.
121 Specify the requested authorization ID for SASL bind.
123 must be one of the following formats:
124 .BI dn: "<distinguished name>"
129 Specify the SASL mechanism to be used for authentication. If it's not
130 specified, the program will choose the best mechanism the server knows.
133 Issue StartTLS (Transport Layer Security) extended operation. If you use
134 \fB\-ZZ\fP, the command will require the operation to be successful.
137 ldapwhoami \-x \-D "cn=Manager,dc=example,dc=com" \-W
142 .BR ldap_extended_operation (3)
144 The OpenLDAP Project <http://www.openldap.org/>