command line


LDAP from command line

Using LDAP from command line can be quite man (or info) expensive. Usually LDAP is used for samba authentication, so it is set up something like this: domain example.com is described in LDAP as base dn: "dc=example,dc=com" also two OU-s are usually present: ou=groups for all groups and ou=users for all users. All this is case insensitive. Selecting all groups from LDAP is done using ldapsearch. ldapsearch -x -b "ou=groups,dc=example,dc=com" -h LDAP_host This lists all groups.