Skip to content
This repository was archived by the owner on Jul 2, 2020. It is now read-only.

Debugging LDAP data

Jump to bottom
Timotheus Pokorra edited this page Dec 25, 2018 · 7 revisions

To see the data that is stored in LDAP, these commands are useful:

pwd=`cat /etc/kolab/kolab.conf | grep "^bind_pw" | cut -d " " -f 3`
# show all domains
ldapsearch -D "cn=Directory Manager" -w $pwd -b cn=kolab,cn=config
# show all users of that domain
ldapsearch -D "cn=Directory Manager" -w $pwd -b dc=domain20140722144921,dc=de
# show user test
ldapsearch -D "cn=Directory Manager" -w $pwd -b uid=test,ou=People,dc=pokorra,dc=de 
ldapsearch -D "cn=Directory Manager" -w $pwd -b cn="Directory Administrators,dc=domain20140722144921,dc=de"
ldapsearch -x -D "uid=myuser,ou=People,dc=mydomain,dc=de" -w $pwd -b "dc=mydomain,dc=de" \* nsRole aci

To see the current schema:

ldapsearch -xLLL -D "cn=Directory Manager" -w $pwd -b "cn=schema" '(objectclass=*)' objectclasses attributetypes

see also http://directory.fedoraproject.org/docs/389ds/design/dynamically-reload-schema.html

Clone this wiki locally