Welcome to Linux Knowledge Base and Tutorial
"The place where you learn linux"
Save the Children

 Create an AccountHome | Submit News | Your Account  

Tutorial Menu
Linux Tutorial Home
Table of Contents

· Introduction to Operating Systems
· Linux Basics
· Working with the System
· Shells and Utilities
· Editing Files
· Basic Administration
· The Operating System
· The X Windowing System
· The Computer Itself
· Networking
· System Monitoring
· Solving Problems
· Security
· Installing and Upgrading
· Linux and Windows

Man Pages
Linux Topics
Test Your Knowledge

Site Menu
Site Map
Copyright Info
Terms of Use
Privacy Info
Masthead / Impressum
Your Account

Private Messages

News Archive
Submit News
User Articles
Web Links


The Web

Who's Online
There are currently, 54 guest(s) and 0 member(s) that are online.

You are an Anonymous user. You can register for free by clicking here




       ldapmodify [-a] [-c] [-S file] [-n] [-v] [-k] [-K] [-M[M]]
       [-d debuglevel]  [-D binddn]  [-W] [-w passwd] [-y passwd­
       file] [-H ldapuri]  [-h ldaphost]  [-p ldapport]  [-P 2|3]
       [-O security-properties] [-I] [-Q] [-U authcid] [-R realm]
       [-x] [-X authzid] [-Y mech] [-Z[Z]] [-f file]

       ldapadd  [-c]  [-S file]  [-n]  [-v]  [-k]  [-K]   [-M[M]]
       [-d debuglevel]  [-D binddn]  [-W] [-w passwd] [-y passwd­
       file] [-h ldaphost] [-p ldapport]  [-P 2|3]  [-O security-
       properties]   [-I]   [-Q]   [-U authcid]  [-R realm]  [-x]
       [-X authzid] [-Y mech] [-Z[Z]] [-f file]


       ldapmodify  is  a  shell-accessible   interface   to   the
       ldap_modify(3)  and ldap_add(3) library calls.  ldapadd is
       implemented as a hard link to the ldapmodify  tool.   When
       invoked  as  ldapadd the -a (add new entry) flag is turned
       on automatically.

       ldapmodify opens a connection to an  LDAP  server,  binds,
       and  modifies  or  adds entries.  The entry information is
       read from standard input or from file through the  use  of
       the -f option.


       -a     Add  new entries.  The default for ldapmodify is to
              modify existing entries.  If  invoked  as  ldapadd,
              this flag is always set.

       -c     Continuous  operation  mode.   Errors are reported,
              but ldapmodify will  continue  with  modifications.
              The default is to exit after reporting an error.

       -S file
              Add or change records which where skipped due to an
              error are written to file  and  the  error  message
              returned  by the server is added as a comment. Most
              useful in conjunction with -c.

       -n     Show what would be done, but don't actually  modify
              entries.   Useful for debugging in conjunction with

       -v     Use verbose mode, with many diagnostics written  to
              standard output.

       -k     Use  Kerberos  IV  authentication instead of simple
              authentication.  It is  assumed  that  you  already
              have a valid ticket granting ticket.  You must com­
              pile with Kerberos support for this option to  have

       -d debuglevel
              Set  the LDAP debugging level to debuglevel.  ldap­
              modify must be compiled with LDAP_DEBUG defined for
              this option to have any effect.

       -f file
              Read  the  entry modification information from file
              instead of from standard input.

       -x     Use simple authentication instead of SASL.

       -D binddn
              Use the Distinguished Name binddn to  bind  to  the
              LDAP directory.

       -W     Prompt  for  simple  authentication.   This is used
              instead of specifying the password on  the  command

       -w passwd
              Use  passwd  as the password for simple authentica­

       -y passwdfile
              Use complete contents of passwdfile as the password
              for simple authentication.

       -H ldapuri
              Specify URI(s) referring to the ldap server(s).

       -h ldaphost
              Specify  an alternate host on which the ldap server
              is running.  Deprecated in favor of -H.

       -p ldapport
              Specify an alternate TCP port where the ldap server
              is listening.  Deprecated in favor of -H.

       -P 2|3 Specify the LDAP protocol version to use.

       -O security-properties
              Specify SASL security properties.

       -I     Enable   SASL  Interactive  mode.   Always  prompt.
              Default is to prompt only as needed.

       -Q     Enable SASL Quiet mode.  Never prompt.

       -U authcid
              Specify the authentication ID for  SASL  bind.  The
              Specify the SASL mechanism to be used for authenti­
              cation.  If  it's  not  specified, the program will
              choose the best mechanism the server knows.

       -Z[Z]  Issue StartTLS (Transport Layer Security)  extended
              operation. If you use -ZZ, the command will require
              the operation to be successful.


       The contents of file (or standard input if no -f  flag  is
       given  on  the  command line) should conform to the format
       defined in  slapd.replog(5),  with  the  exceptions  noted

       Lines  that  begin with "replica:" are matched against the
       LDAP server host and port in use to decide if a particular
       replog  record  should  be  applied.  Any other lines that
       precede the "dn:" line are ignored.  The -F  flag  can  be
       used  to  force  ldapmodify  to  apply  all  of the replog
       changes, regardless of the  presence  or  absence  of  any
       "replica:" lines.

       If  no "changetype:" line is present, the default is "add"
       if the -a flag is set (or if the program  was  invoked  as
       ldapadd) and "modify" otherwise.

       If  changetype  is  "modify" and no "add:", "replace:", or
       "delete:" lines appear, the default is "replace" for ldap­
       modify(1) and "add" for ldapadd(1).

       Note that the above exceptions to the slapd.replog(5) for­
       mat allow ldif(5) entries to be used as input to  ldapmod­
       ify or ldapadd.


       Assuming  that  the file /tmp/entrymods exists and has the

           dn: cn=Modify Me,dc=example,dc=com
           changetype: modify
           replace: mail
           mail: modme@OpenLDAP.org
           add: title
           title: Grand Poobah
           add: jpegPhoto
           jpegPhoto:< file://tmp/modme.jpeg
           delete: description

           objectClass: person
           cn: Barbara Jensen
           cn: Babs Jensen
           sn: Jensen
           title: the world's most famous mythical manager
           mail: bjensen@example.com
           uid: bjensen

       the command:

           ldapadd -f /tmp/newentry

       will  add  a  new  entry for Babs Jensen, using the values
       from the file /tmp/newentry.

       Assuming that the file /tmp/entrymods exists and  has  the

           dn: cn=Barbara Jensen,dc=example,dc=com
           changetype: delete

       the command:

           ldapmodify -f /tmp/entrymods

       will remove Babs Jensen's entry.


       Exit  status is zero if no errors occur.  Errors result in
       a non-zero exit status  and  a  diagnostic  message  being
       written to standard error.


       ldapadd(1),  ldapdelete(1),  ldapmodrdn(1), ldapsearch(1),
       ldap.conf(5),   ldap(3),   ldap_add(3),    ldap_delete(3),
       ldap_modify(3), ldap_modrdn(3), slapd.replog(5)


       The OpenLDAP Project <http://www.openldap.org/>


       OpenLDAP  is developed and maintained by The OpenLDAP Pro­
       ject (http://www.openldap.org/).  OpenLDAP is derived from
       University of Michigan LDAP 3.3 Release.

OpenLDAP 2.1.22             06-26-2003              LDAPMODIFY(1)

An undefined database error occurred. SELECT distinct pages.pagepath,pages.pageid FROM pages, page2command WHERE pages.pageid = page2command.pageid AND commandid =

Help us cut cost by not downloading the whole site!
Use of automated download sofware ("harvesters") such as wget, httrack, etc. causes the site to quickly exceed its bandwidth limitation and therefore is expressedly prohibited. For more details on this, take a look here



Security Code
Security Code
Type Security Code

Don't have an account yet? You can create one. As a registered user you have some advantages like theme manager, comments configuration and post comments with your name.

Help if you can!

Amazon Wish List

Did You Know?
You can choose larger fonts by selecting a different themes.


Tell a Friend About Us

Bookmark and Share

Web site powered by PHP-Nuke

Is this information useful? At the very least you can help by spreading the word to your favorite newsgroups, mailing lists and forums.
All logos and trademarks in this site are property of their respective owner. The comments are property of their posters. Articles are the property of their respective owners. Unless otherwise stated in the body of the article, article content (C) 1994-2013 by James Mohr. All rights reserved. The stylized page/paper, as well as the terms "The Linux Tutorial", "The Linux Server Tutorial", "The Linux Knowledge Base and Tutorial" and "The place where you learn Linux" are service marks of James Mohr. All rights reserved.
The Linux Knowledge Base and Tutorial may contain links to sites on the Internet, which are owned and operated by third parties. The Linux Tutorial is not responsible for the content of any such third-party site. By viewing/utilizing this web site, you have agreed to our disclaimer, terms of use and privacy policy. Use of automated download software ("harvesters") such as wget, httrack, etc. causes the site to quickly exceed its bandwidth limitation and are therefore expressly prohibited. For more details on this, take a look here

PHP-Nuke Copyright © 2004 by Francisco Burzi. This is free software, and you may redistribute it under the GPL. PHP-Nuke comes with absolutely no warranty, for details, see the license.
Page Generation: 0.10 Seconds