mkldapcfg

Parameters

-help | -h | -?

Lists help for the command. If you specify additional parameters and arguments, those parameters and arguments are ignored.

-keyfilepath keyfilepath

Specifies the absolute path of the key file that holds the CA certificate. If multiple certificates are required then include all of them in a single file to be provided as input. The file should be present on the system from which mkldapcf is initiated. This parameter is optional.

Note: For information on how to create a file with multiple certificates, see Creating a file with multiple certificates for LDAP configuration.

Note: For information on how to create a file with multiple certificates, see the topic "Creating a file with multiple certificates for LDAP configuration" in the online help information at IBM® Copy Services Manager online product documentation (http://www.ibm.com/support/knowledgecenter/SSESK4).

-server ldapserver

Specifies the LDAP servers. The input format is ldapservername:port, for example, ldapserver1:636 or for entering an IPv6 address with port, [0:0:0:0:0:0:0:1]:636. Multiple backup LDAP servers can be specified by using a semicolon to separate each server. Multiple LDAP servers must be replicas of the primary LDAP server, or they can be any LDAP host with the same schema, which contain data that is mirrored from the same LDAP Data Interchange Format (LDIF) file. If a port is not specified, the default ports used are 389 and 636 for ldap:// and ldaps://, respectively.

-baseDN ldapbase

Specifies the LDAP base DN.

-bindDN bindDN

Specifies the binding DN of an LDAP user who has sufficient permissions to read user data.

-password password

Specifies the password of the user specified with bindDN parameter. To hide the password, call the command without this option. The command will prompt for the password which will not be echoed.