Penguin
Recent Changes
Blame: ldapdelete(1)
EditPageHistoryDiffInfoLikePages
Annotated edit history of ldapdelete(1) version 4 showing authors affecting page license. View with all changes included.
Rev Author # Line
1 perry 1 LDAPDELETE
2 !!!LDAPDELETE
3 NAME
4 SYNOPSIS
5 DESCRIPTION
6 OPTIONS
7 EXAMPLE
8 DIAGNOSTICS
9 SEE ALSO
10 BUGS
11 AUTHOR
12 ACKNOWLEDGEMENTS
13 ----
14 !!NAME
15
16
17 ldapdelete - LDAP delete entry tool
18 !!SYNOPSIS
19
20
21 __ldapdelete__ [[__-n__] [[__-v__] [[__-k__]
22 [[__-K__] [[__-c__] [[__-M[[M]__] [[__-d__
23 ''debuglevel''] [[__-f__ ''file''] [[__-D__
24 ''binddn''] [[__-W__] [[__-w__ ''passwd'']
25 [[__-H__ ''ldapuri''] [[__-h__ ''ldaphost'']
26 [[__-P__ ''2''|''3''] [[__-p__ ''ldapport'']
27 [[__-O__ security-properties__]__ [[__-U__
28 ''authcid''] [[__-x__] [[__-I__] [[__-Q__]
29 [[__-X__ ''authzid''] [[__-Y__ ''mech'']
30 [[__-Z[[Z]__] [[''dn'']...
31 !!DESCRIPTION
32
33
34 ''ldapdelete'' is a shell-accessible interface to the
35 ldap_delete(3) library call.
36
37
38 __ldapdelete__ opens a connection to an LDAP server,
39 binds, and deletes one or more entries. If one or more
40 ''DN'' arguments are provided, entries with those
41 Distinguished Names are deleted. Each ''DN'' should be
42 provided using the LDAPv3 string representation as defined
43 in RFC 2253. If no ''dn'' arguments are provided, a list
44 of DNs is read from standard input (or from ''file'' if
45 the -f flag is used).
46 !!OPTIONS
47
48
49 __-n__
50
51
52 Show what would be done, but don't actually delete entries.
53 Useful for debugging in conjunction with -v.
54
55
56 __-v__
57
58
59 Use verbose mode, with many diagnostics written to standard
60 output.
61
62
63 __-k__
64
65
66 Use Kerberos IV authentication instead of simple
67 authentication. It is assumed that you already have a valid
68 ticket granting ticket. This option only has effect if
69 __ldapdelete__ is compiled with Kerberos
70 support.
71
72
73 __-K__
74
75
76 Same as -k, but only does step 1 of the Kerberos IV bind.
77 This is useful when connecting to a slapd and there is no
78 x500dsa.hostname principal registered with your Kerberos
79 Domain Controller(s).
80
81
82 __-c__
83
84
85 Continuous operation mode. Errors are reported, but
86 __ldapdelete__ will continue with deletions. The default
87 is to exit after reporting an error.
88
89
90 __-M[[M]__
91
92
93 Enable manage DSA IT control. __-MM__ makes control
94 critical.
95
96
97 __-d__ ''debuglevel''
98
99
100 Set the LDAP debugging level to ''debuglevel''.
101 __ldapdelete__ must be compiled with LDAP_DEBUG defined
102 for this option to have any effect.
103
104
105 __-f__ ''file''
106
107
108 Read a series of lines from ''file'', performing one LDAP
109 search for each line. In this case, the ''filter'' given
110 on the command line is treated as a pattern where the first
111 occurrence of __%s__ is replaced with a line from
112 ''file''.
113
114
115 __-x__
116
117
118 Use simple authentication instead of SASL.
119
120
121 __-D__ ''binddn''
122
123
124 Use the Distinguished Name ''binddn'' to bind to the LDAP
125 directory.
126
127
128 __-W__
129
130
131 Prompt for simple authentication. This is used instead of
132 specifying the password on the command line.
133
134
135 __-w__ ''passwd''
136
137
138 Use ''passwd'' as the password for simple
139 authentication.
140
141
142 __-H__ ''ldapuri''
143
144
145 Specify URI(s) referring to the ldap server(s).
146
147
148 __-h__ ''ldaphost''
149
150
151 Specify an alternate host on which the ldap server is
152 running. Deprecated in favor of -H.
153
154
155 __-p__ ''ldapport''
156
157
158 Specify an alternate TCP port where the ldap server is
159 listening. Deprecated in favor of -H.
160
161
162 __-P__ ''2''|''3''
163
164
165 Specify the LDAP protocol version to use.
166
167
168 __-r__
169
170
171 Do a recursive delete. If the DN specified isn't a leaf, its
172 children, and all their children are deleted down the tree.
173 No verification is done, so if you add this switch,
174 ldapdelete will happily delete large portions of your tree.
175 Use with care.
176
177
178 __-O__ ''security-properties''
179
180
181 Specify SASL security properties.
182
183
184 __-I__
185
186
187 Enable SASL Interactive mode. Always prompt. Default is to
188 prompt only as needed.
189
190
191 __-Q__
192
193
194 Enable SASL Quiet mode. Never prompt.
195
196
197 __-U__ ''authcid''
198
199
200 Specify the authentication ID for SASL bind. The form of the
201 identity depends on the actual SASL mechanism
202 used.
203
204
205 __-X__ ''authzid''
206
207
208 Specify the requested authorization ID for SASL bind.
209 ''authzid'' must be one of the following formats:
210 __dn:__'''' or
211 __u:__''''
212
213
214 __-Y__ ''mech''
215
216
217 Specify the SASL mechanism to be used for authentication. If
218 it's not specified, the program will choose the best
219 mechanism the server knows.
220
221
222 __-Z[[Z]__
223
224
225 Issue StartTLS (Transport Layer Security) extended
226 operation. If you use __-ZZ__, the command will require
227 the operation to be successful.
228 !!EXAMPLE
229
230
231 The following command:
232
233
234 ldapdelete
235 will attempt to delete the entry named with commonName
236 !!DIAGNOSTICS
237
238
239 Exit status is 0 if no errors occur. Errors result in a
240 non-zero exit status and a diagnostic message being written
241 to standard error.
242 !!SEE ALSO
243
244
245 ldap.conf(5), ldapadd(1),
246 ldapmodify(1), ldapmodrdn(1),
247 ldapsearch(1), ldap(3),
248 ldap_delete(3)
249 !!BUGS
250
251
252 There is no interactive mode, but there probably should
253 be.
254 !!AUTHOR
255
256
257 The OpenLDAP Project
258 !!ACKNOWLEDGEMENTS
259
260
261 __OpenLDAP__ is developed and maintained by The OpenLDAP
262 Project (http://www.openldap.org/). __OpenLDAP__ is
263 derived from University of Michigan LDAP 3.3
264 Release.
265 ----
This page is a man page (or other imported legacy content). We are unable to automatically determine the license status of this page.