[389-users] Modify users attributes
Rich Megginson
rmeggins at redhat.com
Tue Aug 14 13:18:44 UTC 2012
On 08/14/2012 06:36 AM, Grzegorz Dwornicki wrote:
>
> I should look similat to this:
>
> dn: uid=jsmith,ou=users,l=uk,dc=fosiul,dc=lan
> changetype: modrdn
> newrrdn: uid=new_uid_value
> deleteoldrdn: 1
>
> -
> changetype: modify
> replace: loginshell
> loginshell: /bin/nologin
> -
> modify: userPassword
> userPassword: asfasfasfasfasfasfasfdPQ=
note - there should be no blank lines above - it appears as though the
first "-" is preceded by a blank line - there should be no blank lines
Also - userPassword should be in clear text - do not send pre-hashed
passwords to the directory server.
For more information about ldif - man ldif
>
> If you see "::" in userPassword this means that hash/password is
> ecrypted in base64 before listing in ldif. This rule apply for other
> attributes aswell. Usually it's used when attribute have some
> non-ascii chars. Usually you don't need to worry about it because most
> apps can handle this.
>
> I wrote it by hand soo there may be some errors. The "-" signs are
> important, They mean that operation on this entry are not finished and
> they provide something like transactions in databases - I noticed this
> myself. All operations on entry must be correct or none will be applied.
>
> Greg.
>
> send from htc desire z
>
> 14-08-2012 13:40, "Fosiul Alam" <fosiul at gmail.com
> <mailto:fosiul at gmail.com>> napisaĆ(a):
>
> Hi
> the theme of this script is , i need to modify uid , password,
> loginshell
>
> example
>
> ldapsearch -xZZ -D "cn=Directory Manager" -w 'testtest' -b
> "dc=fosiul,dc=lan" "(cn=Fosiul Alam)" loginshell uid userPassword
> # extended LDIF
> #
> # LDAPv3
> # base <dc=fosiul,dc=lan> with scope subtree
> # filter: (cn=Fosiul Alam)
> # requesting: loginshell uid userPassword
> #
>
> # falam, users, UK, fosiul.lan
> dn: uid=falam,ou=users,l=UK,dc=fosiul,dc=lan
> loginshell: /bin/bash
> uid: falam
> userPassword::
> e1NTSEF9MkpYSGI2bSs3OFk5SlcySG1kOVcxdjFVUFVHMVA3eXI0dFQvZ2c9PQ=
> =
>
> # search result
> search: 3
> result: 0 Success
>
>
> So i need to modify it with
> loginshell: /bin/nologin
> uid: delete_falam
> userPassword:: asfasfasfasfasfasfasfdPQ=
>
>
> my first question is :
> what would be the ldif file format for these changes ??
>
> Thanks for your help .
> --
> 389 users mailing list
> 389-users at lists.fedoraproject.org
> <mailto:389-users at lists.fedoraproject.org>
> https://admin.fedoraproject.org/mailman/listinfo/389-users
>
>
>
> --
> 389 users mailing list
> 389-users at lists.fedoraproject.org
> https://admin.fedoraproject.org/mailman/listinfo/389-users
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.fedoraproject.org/pipermail/389-users/attachments/20120814/56618126/attachment.html>
More information about the 389-users
mailing list