Modifies LDAP configuration settings on the metadata server.
>>-chldapconfig--+----------+--+-----------+--------------------> +- –?----+ '- –quiet-' +- –h----+ '- –help-' >--+--------------------+--+--------------+--+------------+-----> '- –ip--IP_address-' '- –user--dn-' '- –passwd-' >--+---------------------+--+----------------------------+------> '- –secure--+-off-+-' | .-,----. | '-on--' | V | | '- –roledn--"----role-+--"-' >--+---------------------------+--------------------------------> '- –useridattr--attribute-' >--+---------------------------+--------------------------------> '- –roleidattr--attribute-' >--+----------------------------+-------------------------------> '- –rolememattr--attribute-' >--+---------------------------+------------------------------->< '- –cachetimeout--seconds-'
To clear this value, specify empty double quotation marks (for example "").
The maximum length for the DN (the entire list of roles) is 256 characters.
The items in the LDAP cache are removed if the cache timeout is reached. You are then authenticated in the LDAP server rather than in a cache entry the next time you attempt to use the administrative functions.
You must have Administrator privileges to use the command.
You must be logged in to the operating system on the engine hosting the master metadata server to run this command
#sfscli chldapconfig -user cn=Administrator,dc=company,dc=com -roledn "cn = foo, ou = bar, c = us" -passwd Are you sure you want to change LDAP configuration settings? Administrative interfaces will not be usable until the LDAP server is modified to match. [y/n] Y Enter new LDAP password: Confirm new LDAP password: The LDAP configuration was modified successfully.
Parent topic: Administrative commands
Related reference
statldap