1 .TH SLAPAUTH 8C "RELEASEDATE" "OpenLDAP LDVERSION"
2 .\" Copyright 2004-2009 The OpenLDAP Foundation All Rights Reserved.
3 .\" Copying restrictions apply. See COPYRIGHT/LICENSE.
5 slapauth \- Check a list of string-represented IDs for LDAP authc/authz
22 is used to check the behavior of the slapd in mapping identities
23 for authentication and authorization purposes, as specified in
27 configuration file or the
30 .B authz-policy/olcAuthzPolicy
32 .B authz-regexp/olcAuthzRegexp
33 directives, and then parses the
35 list given on the command-line.
40 enable debugging messages as defined by the specified
47 specify an alternative
52 specify a config directory.
57 are specified, the config file will be read and converted to
58 config directory format and written to the specified directory.
59 If neither option is specified, an attempt to read the
60 default config directory will be made before trying to use the default
61 config file. If a valid config directory exists then the
62 default config file is ignored.
67 .BI \-o " option[=value]"
72 Possible generic options/values are:
75 syslog=<subsystems> (see `\-s' in slapd(8))
76 syslog-level=<level> (see `\-S' in slapd(8))
77 syslog-user=<user> (see `\-l' in slapd(8))
85 specify an ID to be used as
87 throughout the test session.
90 is given, the IDs in the ID list are treated as
94 specify an ID to be used as
96 throughout the test session.
99 is given, the IDs in the ID list are treated as
105 are given via command line switch, the ID list cannot be present.
114 SBINDIR/slapauth -f /ETCDIR/slapd.conf -v \\
115 -U bjorn -X u:bjensen
119 tests whether the user
121 can assume the identity of the user
123 provided the directives
128 authz-regexp "^uid=([^,]+).*,cn=auth$"
129 "ldap:///dc=example,dc=net??sub?uid=$1"
140 "OpenLDAP Administrator's Guide" (http://www.OpenLDAP.org/doc/admin/)