idsdnpw

Use the idsdnpw to set the administration DN and administrative password for an instance.

Description

The idsdnpw command sets or changes the administrator DN and password for a directory server instance. The command can be run only when the directory server instance is in stopped state. When an administrator specifies an administrator password and an administrator DN, which is optional, the command writes these values to the ibmslapd.conf file. If the administrator DN is not specified, it is set to cn=root by default.

Synopsis

idsdnpw [-I instancename [[-u user_DN] -p password] [-f config_file] [-d debug_level]
        [-b output_file] [-q] [-n]] | -v | -?

Options

The idsdnpw command takes the following parameters.

-b output_file: Specifies the full path of a file to redirect console output. If you use this parameter with the -q parameter, errors are sent to the output_file file. If debug mode is set, then the debug output is also sent to this file.
-d debug_level: Sets the LDAP debug level to debug_level. If you specify this parameter, it sends the debug output to stdout. The debug_level value is a bit mask that controls which output is generated with values from 1 to 65535. For more information about debug levels, see Debugging levels.
-f config_file: Specifies the full path to the configuration file to update with administration DN and password values. If this option is not specified, the default configuration file for the directory server instance is used.
-I instancename: Specifies the directory server instance name. This parameter is required if there are directory server instances on the system.
-n: Specifies to run in no prompt mode. All output from the command is generated, except for messages that require user interaction. This parameter must be used with the -p parameter.
-p password: Specifies to change the directory administrator password. If an administrator DN value is not specified by using the -u parameter, the current value of the administrator DN is used. If the administrator DN is not defined, then the default value, cn=root, is used. This parameter is required when the -n parameter is specified.
-q: Specifies to run in quiet mode. All output from the command is suppressed, except for error messages. If you also specify the -d parameter, then the trace output is not suppressed.
-u user_DN: Specifies to create or change the directory administrator distinguished name (DN).
-v: Specifies to show the version information of the command.
-?: Specifies to show the syntax format.

Examples

Example 1:

To set the administrator DN to cn=myname and the password to secret, run the following command:

idsdnpw –u cn=myname –p secret

If the password is not specified, you are prompted for the password.

Note: The administrator password must conform to the administration password policy requirements, if the administration password policy is set.