1 .TH SLAPAUTH 8C "RELEASEDATE" "OpenLDAP LDVERSION"
2 .\" Copyright 2004-2009 The OpenLDAP Foundation All Rights Reserved.
3 .\" Copying restrictions apply. See COPYRIGHT/LICENSE.
6 slapauth \- Check a list of string-represented IDs for LDAP authc/authz
23 is used to check the behavior of the slapd in mapping identities
24 for authentication and authorization purposes, as specified in
28 configuration file or the
31 .B authz-policy/olcAuthzPolicy
33 .B authz-regexp/olcAuthzRegexp
34 directives, and then parses the
36 list given on the command-line.
41 enable debugging messages as defined by the specified
48 specify an alternative
53 specify a config directory.
58 are specified, the config file will be read and converted to
59 config directory format and written to the specified directory.
60 If neither option is specified, an attempt to read the
61 default config directory will be made before trying to use the default
62 config file. If a valid config directory exists then the
63 default config file is ignored.
68 .BI \-o " option[=value]"
73 Possible generic options/values are:
76 syslog=<subsystems> (see `\-s' in slapd(8))
77 syslog-level=<level> (see `\-S' in slapd(8))
78 syslog-user=<user> (see `\-l' in slapd(8))
86 specify an ID to be used as
88 throughout the test session.
91 is given, the IDs in the ID list are treated as
95 specify an ID to be used as
97 throughout the test session.
100 is given, the IDs in the ID list are treated as
106 are given via command line switch, the ID list cannot be present.
115 SBINDIR/slapauth -f /ETCDIR/slapd.conf -v \\
116 -U bjorn -X u:bjensen
120 tests whether the user
122 can assume the identity of the user
124 provided the directives
129 authz-regexp "^uid=([^,]+).*,cn=auth$"
130 "ldap:///dc=example,dc=net??sub?uid=$1"
141 "OpenLDAP Administrator's Guide" (http://www.OpenLDAP.org/doc/admin/)