Configuring an attribute with a unique value for bind operations

Edit online

Configure an attribute with a unique value to use as a substitute for the DN value in bind operations. A unique attribute value might be easier to remember for authentication purposes.

Procedure

  1. Log in as the instance owner.
  2. To configure an attribute with a unique value as attribute for bind, run the idsldapmodify command: 
    idsldapmodify -h server.com -p port -D adminDN -w adminPWD -i setBindAttr.ldif
    The setBindAttr.ldif file contains the following entries: 
    dn: cn=Configuration
changetype: modify
add: ibm-slapdUniqueAttrForBindWithValue
ibm-slapdUniqueAttrForBindWithValue: mail
  3. Restart the directory server and the administration server. 
    ibmslapd -I dsrdbm01 -k
ibmdiradm -I dsrdbm01 -k
ibmslapd -I dsrdbm01 -n
ibmdiradm -I dsrdbm01

Examples

To bind to a directory server with a unique attribute value, run the idsldapsearch command in the following format:

idsldapsearch -h server.com -p port -D al.garcia@sample.com -w userPWD \
-s sub -b "cn=Al Garcia, ou=Home Entertainment, ou=Austin, o=sample" objectclass=*

cn=Al Garcia,ou=Home Entertainment,ou=Austin,o=sample
objectclass=top
objectclass=person
objectclass=organizationalPerson
objectclass=inetOrgPerson
cn=Al Garcia
sn=Garcia
telephonenumber=1-812-855-7579
mail=al.garcia@sample.com
internationaliSDNNumber=755-7095
title=LEAD TA / MAINTENANCE
seealso=cn=Cynthia Flowers, ou=Home Entertainment, ou=Austin, o=sample
postalcode=1377