Using the command line

Edit online

You can use the commands provided here to add members to the administrative group using command line.

About this task

idsldapadd -D <adminDN> -w<adminPW> -i<filename>
where <filename> contains: 
dn: cn=AdminGroup, cn=Configuration
cn: AdminGroup
objectclass: top
objectclass: container

dn: cn=admin1, cn=AdminGroup, cn=Configuration
cn: admin1
ibm-slapdAdminDN: <memberDN>
ibm-slapdAdminPW: <password>
ibm-slapdAdminRole: <role value>
ibm-slapdAdminRole: <role value2>
#ibm-slapdKrbAdminDN and ibm-slapdDigestAdminUser are optional attributes.
ibm-slapdKrbAdminDN: <KerberosID>
ibm-slapdDigestAdminUser: <DigestID>
objectclass: top
objectclass: ibm-slapdConfigEntry
objectclass: ibm-slapdAdminGroupMember
Note:
  • If you already have a member created in the administrative group, omit the first entry.
  • If multiple instances of ibm-slapdAdminRole attribute are specified with different role values, and one of these role values is NoAdmin, then all other role values will be ignored and an administrative group member having NoAdmin role will be added.
To update the settings dynamically, issue the following idsldapexop command: 
idsldapexop -D <adminDN> -w <adminPW> -op readconfig -scope subtree 
cn=AdminGroup,cn=Configuration