1 .TH SLAPAUTH 8C "RELEASEDATE" "OpenLDAP LDVERSION"
2 .\" Copyright 2004-2012 The OpenLDAP Foundation All Rights Reserved.
3 .\" Copying restrictions apply. See COPYRIGHT/LICENSE.
6 slapauth \- Check a list of string-represented IDs for LDAP authc/authz
10 .BI \-d \ debug-level\fR]
12 .BI \-f \ slapd.conf\fR]
18 .BI \-o \ option\fR[ = value\fR]]
32 is used to check the behavior of the slapd in mapping identities
33 for authentication and authorization purposes, as specified in
37 configuration file or the
40 .BR authz\-policy / olcAuthzPolicy
42 .BR authz\-regexp / olcAuthzRegexp
43 directives, and then parses the
45 list given on the command-line.
50 enable debugging messages as defined by the specified
57 specify an alternative
62 specify a config directory.
67 are specified, the config file will be read and converted to
68 config directory format and written to the specified directory.
69 If neither option is specified, an attempt to read the
70 default config directory will be made before trying to use the default
71 config file. If a valid config directory exists then the
72 default config file is ignored.
77 .BI \-o \ option\fR[ = value\fR]
82 Possible generic options/values are:
85 syslog=<subsystems> (see `\-s' in slapd(8))
86 syslog\-level=<level> (see `\-S' in slapd(8))
87 syslog\-user=<user> (see `\-l' in slapd(8))
95 specify an ID to be used as
97 throughout the test session.
100 is given, the IDs in the ID list are treated as
104 specify an ID to be used as
106 throughout the test session.
107 If present, and if no
109 is given, the IDs in the ID list are treated as
115 are given via command line switch, the ID list cannot be present.
124 SBINDIR/slapauth \-f /ETCDIR/slapd.conf \-v \\
125 \-U bjorn \-X u:bjensen
129 tests whether the user
131 can assume the identity of the user
133 provided the directives
138 authz\-regexp "^uid=([^,]+).*,cn=auth$"
139 "ldap:///dc=example,dc=net??sub?uid=$1"
150 "OpenLDAP Administrator's Guide" (http://www.OpenLDAP.org/doc/admin/)