1dsidm(8)                    System Manager's Manual                   dsidm(8)
2
3
4

NAME

6       dsidm
7

SYNOPSIS

9       dsidm  [-h]  [-b BASEDN] [-v] [-D BINDDN] [-w BINDPW] [-W] [-y PWDFILE]
10       [-Z] [-j] instance  {account,group,initialise,organizationalunit,posix‐
11       group,user,client_config} ...
12

OPTIONS

14       instance
15              The instance name OR the LDAP url to connect to, IE localhost,
16              ldap://mai.example.com:389
17
18
19   Sub-commands
20       dsidm account
21              Manage  generic  accounts,  with  tasks like modify, locking and
22              unlocking. To create an account, see "user" subcommand instead.
23
24       dsidm group
25              Manage groups
26
27       dsidm initialise
28              Initialise a backend with domain information and sample entries
29
30       dsidm organizationalunit
31              Manage organizational units
32
33       dsidm posixgroup
34              Manage posix groups
35
36       dsidm user
37              Manage posix users
38
39       dsidm client_config
40              Display and generate client example configs for this LDAP server
41

OPTIONS 'dsidm account'

43       usage: dsidm instance account [-h]
44                                     {list,get-by-dn,modify-by-
45       dn,delete,lock,status,unlock,reset_password,change_password}
46                                     ...
47
48
49   Sub-commands
50       dsidm account list
51              list accounts that could login to the directory
52
53       dsidm account get-by-dn
54              get-by-dn <dn>
55
56       dsidm account modify-by-dn
57              modify-by-dn <dn> <add|delete|replace>:<attribute>:<value> ...
58
59       dsidm account delete
60              deletes the account
61
62       dsidm account lock
63              lock
64
65       dsidm account status
66              status
67
68       dsidm account unlock
69              unlock
70
71       dsidm account reset_password
72              Reset  the password of an account. This should be performed by a
73              directory admin.
74
75       dsidm account change_password
76              Change the password of an account. This can be performed by  any
77              user (with correct rights)
78

OPTIONS 'dsidm account list'

80       usage: dsidm instance account list [-h]
81
82
83
84

OPTIONS 'dsidm account get-by-dn'

86       usage: dsidm instance account get-by-dn [-h] [dn]
87
88
89       dn     The dn to get and display
90
91
92

OPTIONS 'dsidm account modify-by-dn'

94       usage:  dsidm  instance  account  modify-by-dn [-h] dn changes [changes
95       ...]
96
97
98       dn     The dn to get and display
99
100
101       changes
102              A    list     of     changes     to     apply     in     format:
103              <add|delete|replace>:<attribute>:<value>
104
105
106

OPTIONS 'dsidm account delete'

108       usage: dsidm instance account delete [-h] [dn]
109
110
111       dn     The dn of the account to delete
112
113
114

OPTIONS 'dsidm account lock'

116       usage: dsidm instance account lock [-h] [dn]
117
118
119       dn     The dn to lock
120
121
122

OPTIONS 'dsidm account status'

124       usage: dsidm instance account status [-h] [dn]
125
126
127       dn     The dn to check
128
129
130

OPTIONS 'dsidm account unlock'

132       usage: dsidm instance account unlock [-h] [dn]
133
134
135       dn     The dn to unlock
136
137
138

OPTIONS 'dsidm account reset_password'

140       usage: dsidm instance account reset_password [-h] [dn] [new_password]
141
142
143       dn     The dn to reset the password for
144
145
146       new_password
147              The new password to set
148
149
150

OPTIONS 'dsidm account change_password'

152       usage: dsidm instance account change_password [-h]
153                                                     [dn] [new_password]
154                                                     [current_password]
155
156
157       dn     The dn to change the password for
158
159
160       new_password
161              The new password to set
162
163
164       current_password
165              The accounts current password
166
167
168
169

OPTIONS 'dsidm group'

171       usage: dsidm instance group [-h]
172                                   {list,get,get_dn,create,delete,mem‐
173       bers,add_member,remove_member}
174                                   ...
175
176
177   Sub-commands
178       dsidm group list
179              list
180
181       dsidm group get
182              get
183
184       dsidm group get_dn
185              get_dn
186
187       dsidm group create
188              create
189
190       dsidm group delete
191              deletes the object
192
193       dsidm group members
194              List member dns of a group
195
196       dsidm group add_member
197              Add a member to a group
198
199       dsidm group remove_member
200              Remove a member from a group
201

OPTIONS 'dsidm group list'

203       usage: dsidm instance group list [-h]
204
205
206
207

OPTIONS 'dsidm group get'

209       usage: dsidm instance group get [-h] [selector]
210
211
212       selector
213              The term to search for
214
215
216

OPTIONS 'dsidm group get_dn'

218       usage: dsidm instance group get_dn [-h] [dn]
219
220
221       dn     The dn to get
222
223
224

OPTIONS 'dsidm group create'

226       usage: dsidm instance group create [-h] [--cn [CN]]
227
228
229
230       --cn [CN]
231              Value of cn
232
233

OPTIONS 'dsidm group delete'

235       usage: dsidm instance group delete [-h] [dn]
236
237
238       dn     The dn to delete
239
240
241

OPTIONS 'dsidm group members'

243       usage: dsidm instance group members [-h] [cn]
244
245
246       cn     cn of group to list members of
247
248
249

OPTIONS 'dsidm group add_member'

251       usage: dsidm instance group add_member [-h] [cn] [dn]
252
253
254       cn     cn of group to add member to
255
256
257       dn     dn of object to add to group as member
258
259
260

OPTIONS 'dsidm group remove_member'

262       usage: dsidm instance group remove_member [-h] [cn] [dn]
263
264
265       cn     cn of group to remove member from
266
267
268       dn     dn of object to remove from group as member
269
270
271
272

OPTIONS 'dsidm initialise'

274       usage: dsidm instance initialise [-h] [--version VERSION]
275
276
277
278       --version VERSION
279              The version of entries to create.
280
281

OPTIONS 'dsidm organizationalunit'

283       usage: dsidm instance organizationalunit [-h]
284                                                {list,get,get_dn,cre‐
285       ate,delete} ...
286
287
288   Sub-commands
289       dsidm organizationalunit list
290              list
291
292       dsidm organizationalunit get
293              get
294
295       dsidm organizationalunit get_dn
296              get_dn
297
298       dsidm organizationalunit create
299              create
300
301       dsidm organizationalunit delete
302              deletes the object
303

OPTIONS 'dsidm organizationalunit list'

305       usage: dsidm instance organizationalunit list [-h]
306
307
308
309

OPTIONS 'dsidm organizationalunit get'

311       usage: dsidm instance organizationalunit get [-h] [selector]
312
313
314       selector
315              The term to search for
316
317
318

OPTIONS 'dsidm organizationalunit get_dn'

320       usage: dsidm instance organizationalunit get_dn [-h] [dn]
321
322
323       dn     The dn to get
324
325
326

OPTIONS 'dsidm organizationalunit create'

328       usage: dsidm instance organizationalunit create [-h] [--ou [OU]]
329
330
331
332       --ou [OU]
333              Value of ou
334
335

OPTIONS 'dsidm organizationalunit delete'

337       usage: dsidm instance organizationalunit delete [-h] [dn]
338
339
340       dn     The dn to delete
341
342
343
344

OPTIONS 'dsidm posixgroup'

346       usage:  dsidm  instance posixgroup [-h] {list,get,get_dn,create,delete}
347       ...
348
349
350   Sub-commands
351       dsidm posixgroup list
352              list
353
354       dsidm posixgroup get
355              get
356
357       dsidm posixgroup get_dn
358              get_dn
359
360       dsidm posixgroup create
361              create
362
363       dsidm posixgroup delete
364              deletes the object
365

OPTIONS 'dsidm posixgroup list'

367       usage: dsidm instance posixgroup list [-h]
368
369
370
371

OPTIONS 'dsidm posixgroup get'

373       usage: dsidm instance posixgroup get [-h] [selector]
374
375
376       selector
377              The term to search for
378
379
380

OPTIONS 'dsidm posixgroup get_dn'

382       usage: dsidm instance posixgroup get_dn [-h] [dn]
383
384
385       dn     The dn to get
386
387
388

OPTIONS 'dsidm posixgroup create'

390       usage: dsidm instance posixgroup create [-h] [--cn [CN]]
391                                               [--gidNumber [GIDNUMBER]]
392
393
394
395       --cn [CN]
396              Value of cn
397
398
399       --gidNumber [GIDNUMBER]
400              Value of gidNumber
401
402

OPTIONS 'dsidm posixgroup delete'

404       usage: dsidm instance posixgroup delete [-h] [dn]
405
406
407       dn     The dn to delete
408
409
410
411

OPTIONS 'dsidm user'

413       usage: dsidm instance user [-h]
414                                  {list,get,get_dn,create,mod‐
415       ify,delete,lock,status,unlock}
416                                  ...
417
418
419   Sub-commands
420       dsidm user list
421              list
422
423       dsidm user get
424              get
425
426       dsidm user get_dn
427              get_dn
428
429       dsidm user create
430              create
431
432       dsidm user modify
433              modify <add|delete|replace>:<attribute>:<value> ...
434
435       dsidm user delete
436              deletes the object
437
438       dsidm user lock
439              lock
440
441       dsidm user status
442              status
443
444       dsidm user unlock
445              unlock
446

OPTIONS 'dsidm user list'

448       usage: dsidm instance user list [-h]
449
450
451
452

OPTIONS 'dsidm user get'

454       usage: dsidm instance user get [-h] [selector]
455
456
457       selector
458              The term to search for
459
460
461

OPTIONS 'dsidm user get_dn'

463       usage: dsidm instance user get_dn [-h] [dn]
464
465
466       dn     The dn to get
467
468
469

OPTIONS 'dsidm user create'

471       usage: dsidm instance user create [-h] [--uid [UID]] [--cn [CN]]
472                                         [--displayName [DISPLAYNAME]]
473                                         [--uidNumber [UIDNUMBER]]
474                                         [--gidNumber [GIDNUMBER]]
475                                         [--homeDirectory [HOMEDIRECTORY]]
476
477
478
479       --uid [UID]
480              Value of uid
481
482
483       --cn [CN]
484              Value of cn
485
486
487       --displayName [DISPLAYNAME]
488              Value of displayName
489
490
491       --uidNumber [UIDNUMBER]
492              Value of uidNumber
493
494
495       --gidNumber [GIDNUMBER]
496              Value of gidNumber
497
498
499       --homeDirectory [HOMEDIRECTORY]
500              Value of homeDirectory
501
502

OPTIONS 'dsidm user modify'

504       usage: dsidm instance user modify [-h] selector changes [changes ...]
505
506
507       selector
508              The uid to modify
509
510
511       changes
512              A     list     of     changes     to     apply     in    format:
513              <add|delete|replace>:<attribute>:<value>
514
515
516

OPTIONS 'dsidm user delete'

518       usage: dsidm instance user delete [-h] [dn]
519
520
521       dn     The dn to delete
522
523
524

OPTIONS 'dsidm user lock'

526       usage: dsidm instance user lock [-h] [uid]
527
528
529       uid    The uid to lock
530
531
532

OPTIONS 'dsidm user status'

534       usage: dsidm instance user status [-h] [uid]
535
536
537       uid    The uid to check
538
539
540

OPTIONS 'dsidm user unlock'

542       usage: dsidm instance user unlock [-h] [uid]
543
544
545       uid    The uid to unlock
546
547
548
549

OPTIONS 'dsidm client_config'

551       usage: dsidm instance client_config [-h]  {sssd.conf,ldap.conf,display}
552       ...
553
554
555   Sub-commands
556       dsidm client_config sssd.conf
557              Generate a SSSD configuration for this LDAP server
558
559       dsidm client_config ldap.conf
560              Generate  an  OpenLDAP  ldap.conf  configuration  for  this LDAP
561              server
562
563       dsidm client_config display
564              Display generic application parameters for LDAP connection
565

OPTIONS 'dsidm client_config sssd.conf'

567       usage: dsidm instance client_config sssd.conf [-h] [allowed_group]
568
569
570       allowed_group
571              The name of the group allowed access to this system
572
573
574

OPTIONS 'dsidm client_config ldap.conf'

576       usage: dsidm instance client_config ldap.conf [-h]
577
578
579
580

OPTIONS 'dsidm client_config display'

582       usage: dsidm instance client_config display [-h]
583
584
585
586
587
588       -b BASEDN, --basedn BASEDN
589              Basedn (root naming context) of the instance to manage
590
591
592       -v, --verbose
593              Display verbose operation tracing during command execution
594
595
596       -D BINDDN, --binddn BINDDN
597              The account to bind as for executing operations
598
599
600       -w BINDPW, --bindpw BINDPW
601              Password for binddn
602
603
604       -W, --prompt
605              Prompt for password for binddn
606
607
608       -y PWDFILE, --pwdfile PWDFILE
609              Specifies a file containing the password for the bind DN
610
611
612       -Z, --starttls
613              Connect with StartTLS
614
615
616       -j, --json
617              Return result in JSON object
618
619

AUTHORS

621       lib389 was written by Red Hat Inc. <389-devel@lists.fedoraproject.org>.
622

DISTRIBUTION

624       The   latest   version   of   lib389    may    be    downloaded    from
625       ⟨http://www.port389.org/docs/389ds/FAQ/upstream-test-framework.html⟩
626
627
628
629                                    Manual                            dsidm(8)