User ManualTable of ContentsConfiguration and Command Reference1Table of Contents3About This Reference91. Directory Server Overview92. Examples and Formatting92.1. Command and File Examples92.2. Tool Locations92.3. LDAP Locations92.4. Text Formatting and Styles103. Additional Reading114. Giving Feedback125. Documentation History12Chapter 1. Introduction151.1. Directory Server Configuration151.2. Directory Server Instance File Reference151.3. Using Directory Server Command-Line Utilities151.4. Using Directory Server Command-Line Scripts15Chapter 2. Core Server Configuration Reference172.1. Overview of the Directory Server Configuration172.1.1. LDIF and Schema Configuration Files172.1.2. How the Server Configuration Is Organized202.1.2.1. Configuration Attributes202.1.2.2. Configuration of Plug-in Functionality202.1.2.3. Configuration of Databases212.1.2.4. Configuration of Indexes212.2. Accessing and Modifying Server Configuration212.2.1. Access Control for Configuration Entries212.2.2. Changing Configuration Attributes222.2.2.1. Modifying Configuration Entries Using LDAP222.2.2.2. Restrictions to Modifying Configuration Entries and Attributes232.2.2.3. Configuration Changes Requiring Server Restart232.3. Core Server Configuration Attributes Reference242.3.1. cn=config242.3.1.1. nsslapd-accesslog (Access Log)252.3.1.2. nsslapd-accesslog-level (Access Log Level)252.3.1.3. nsslapd-accesslog-list (List of Access Log Files)262.3.1.4. nsslapd-accesslog-logbuffering (Log Buffering)262.3.1.5. nsslapd-accesslog-logexpirationtime (Access Log Expiration Time)272.3.1.6. nsslapd-accesslog-logexpirationtimeunit (Access Log Expiration Time Unit)272.3.1.7. nsslapd-accesslog-logging-enabled (Access Log Enable Logging)272.3.1.8. nsslapd-accesslog-logmaxdiskspace (Access Log Maximum Disk Space)282.3.1.9. nsslapd-accesslog-logminfreediskspace (Access Log Minimum Free Disk Space)292.3.1.10. nsslapd-accesslog-logrotationsync-enabled (Access Log Rotation Sync Enabled)292.3.1.11. nsslapd-accesslog-logrotationsynchour (Access Log Rotation Sync Hour)292.3.1.12. nsslapd-accesslog-logrotationsyncmin (Access Log Rotation Sync Minute)302.3.1.13. nsslapd-accesslog-logrotationtime (Access Log Rotation Time)302.3.1.14. nsslapd-accesslog-logrotationtimeunit (Access Log Rotation Time Unit)312.3.1.15. nsslapd-accesslog-maxlogsize (Access Log Maximum Log Size)312.3.1.16. nsslapd-accesslog-maxlogsperdir (Access Log Maximum Number of Log Files)312.3.1.17. nsslapd-accesslog-mode (Access Log File Permission)322.3.1.18. nsslapd-allow-unauthenticated-binds322.3.1.19. nsslapd-attribute-name-exceptions332.3.1.20. nsslapd-auditlog (Audit Log)332.3.1.21. nsslapd-auditlog-list342.3.1.22. nsslapd-auditlog-logexpirationtime (Audit Log Expiration Time)342.3.1.23. nsslapd-auditlog-logexpirationtimeunit (Audit Log Expiration Time Unit)352.3.1.24. nsslapd-auditlog-logging-enabled (Audit Log Enable Logging)352.3.1.25. nsslapd-auditlog-logmaxdiskspace (Audit Log Maximum Disk Space)362.3.1.26. nsslapd-auditlog-logminfreediskspace (Audit Log Minimum Free Disk Space)362.3.1.27. nsslapd-auditlog-logrotationsync-enabled (Audit Log Rotation Sync Enabled)362.3.1.28. nsslapd-auditlog-logrotationsynchour (Audit Log Rotation Sync Hour)372.3.1.29. nsslapd-auditlog-logrotationsyncmin (Audit Log Rotation Sync Minute)372.3.1.30. nsslapd-auditlog-logrotationtime (Audit Log Rotation Time)372.3.1.31. nsslapd-auditlog-logrotationtimeunit (Audit Log Rotation Time Unit)382.3.1.32. nsslapd-auditlog-maxlogsize (Audit Log Maximum Log Size)382.3.1.33. nsslapd-auditlog-maxlogsperdir (Audit Log Maximum Number of Log Files)392.3.1.34. nsslapd-auditlog-mode (Audit Log File Permission)392.3.1.35. nsslapd-certdir (Certificate and Key Database Directory)402.3.1.36. nsslapd-certmap-basedn (Certificate Map Search Base)402.3.1.37. nsslapd-config412.3.1.38. nsslapd-conntablesize412.3.1.39. nsslapd-counters412.3.1.40. nsslapd-csnlogging422.3.1.41. nsslapd-ds4-compatible-schema422.3.1.42. nsslapd-enquote-sup-oc (Enable Superior Object Class Enquoting)422.3.1.43. nsslapd-errorlog (Error Log)432.3.1.44. nsslapd-errorlog-level (Error Log Level)442.3.1.45. nsslapd-errorlog-list452.3.1.46. nsslapd-errorlog-logexpirationtime (Error Log Expiration Time)452.3.1.47. nsslapd-errorlog-logexpirationtimeunit (Error Log Expiration Time Unit)452.3.1.48. nsslapd-errorlog-logging-enabled (Enable Error Logging)462.3.1.49. nsslapd-errorlog-logmaxdiskspace (Error Log Maximum Disk Space)462.3.1.50. nsslapd-errorlog-logminfreediskspace (Error Log Minimum Free Disk Space)462.3.1.51. nsslapd-errorlog-logrotationsync-enabled (Error Log Rotation Sync Enabled)472.3.1.52. nsslapd-errorlog-logrotationsynchour (Error Log Rotation Sync Hour)472.3.1.53. nsslapd-errorlog-logrotationsyncmin (Error Log Rotation Sync Minute)482.3.1.54. nsslapd-errorlog-logrotationtime (Error Log Rotation Time)482.3.1.55. nsslapd-errorlog-logrotationtimeunit (Error Log Rotation Time Unit)482.3.1.56. nsslapd-errorlog-maxlogsize (Maximum Error Log Size)492.3.1.57. nsslapd-errorlog-maxlogsperdir (Maximum Number of Error Log Files)492.3.1.58. nsslapd-errorlog-mode (Error Log File Permission)502.3.1.59. nsslapd-groupevalnestlevel502.3.1.60. nsslapd-idletimeout (Default Idle Timeout)512.3.1.61. nsslapd-instancedir (Instance Directory)512.3.1.62. nsslapd-ioblocktimeout (IO Block Time Out)512.3.1.63. nsslapd-lastmod (Track Modification Time)522.3.1.64. nsslapd-ldapiautobind (Enable Autobind)522.3.1.65. nsslapd-ldapientrysearchbase (Search Base for LDAPI Authentication Entries)532.3.1.66. nsslapd-ldapifilepath (File Location for LDAPI Socket)532.3.1.67. nsslapd-ldapigidnumbertype (Attribute Mapping for System GUID Number)542.3.1.68. nsslapd-ldapilisten (Enable LDAPI)542.3.1.69. nsslapd-ldapimaprootdn (Autobind Mapping for Root User)542.3.1.70. nsslapd-ldapimaptoentries (Enable Autobind Mapping for Regular Users)552.3.1.71. nsslapd-ldapiuidnumbertype552.3.1.72. nsslapd-listenhost (Listen to IP Address)562.3.1.73. nsslapd-localhost (Local Host)562.3.1.74. nsslapd-localuser (Local User)562.3.1.75. nsslapd-lockdir (Server Lock File Directory)572.3.1.76. nsslapd-maxbersize (Maximum Message Size)572.3.1.77. nsslapd-maxdescriptors (Maximum File Descriptors)582.3.1.78. nsslapd-maxsasliosize (Maximum SASL Packet Size)592.3.1.79. nsslapd-maxthreadsperconn (Maximum Threads per Connection)592.3.1.80. nsslapd-nagle602.3.1.81. nsslapd-outbound-ldap-io-timeout602.3.1.82. nsslapd-plug-in602.3.1.83. nsslapd-port (Port Number)602.3.1.84. nsslapd-privatenamespaces612.3.1.85. nsslapd-pwpolicy-local (Enable Subtree- and User-Level Password Policy)612.3.1.86. nsslapd-readonly (Read Only)612.3.1.87. nsslapd-referral (Referral)622.3.1.88. nsslapd-referralmode (Referral Mode)622.3.1.89. nsslapd-reservedescriptors (Reserved File Descriptors)632.3.1.90. nsslapd-return-exact-case (Return Exact Case)642.3.1.91. nsslapd-rewrite-rfc1274642.3.1.92. nsslapd-rootdn (Manager DN)642.3.1.93. nsslapd-rootpw (Root Password)652.3.1.94. nsslapd-rootpwstoragescheme (Root Password Storage Scheme)652.3.1.95. nsslapd-saslpath662.3.1.96. nsslapd-schema-ignore-trailing-spaces (Ignore Trailing Spaces in Object Class Names)662.3.1.97. nsslapd-schemacheck (Schema Checking)672.3.1.98. nsslapd-schemadir672.3.1.99. nsslapd-schemareplace682.3.1.100. nsslapd-securelistenhost682.3.1.101. nsslapd-securePort (Encrypted Port Number)682.3.1.102. nsslapd-security (Security)692.3.1.103. nsslapd-sizelimit (Size Limit)692.3.1.104. nsslapd-ssl-check-hostname (Verify Hostname for Outbound Connections)702.3.1.105. nsslapd-threadnumber (Thread Number)702.3.1.106. nsslapd-timelimit (Time Limit)712.3.1.107. nsslapd-tmpdir712.3.1.108. nsslapd-versionstring712.3.1.109. nsslapd-workingdir722.3.1.110. nsSSLclientauth (Client Authentication)722.3.1.111. passwordAllowChangeTime722.3.1.112. passwordChange (Password Change)732.3.1.113. passwordCheckSyntax (Check Password Syntax)732.3.1.114. passwordExp (Password Expiration)742.3.1.115. passwordExpirationTime742.3.1.116. passwordExpWarned742.3.1.117. passwordGraceLimit (Password Expiration)742.3.1.118. passwordGraceUserTime752.3.1.119. passwordHistory (Password History)752.3.1.120. passwordInHistory (Number of Passwords to Remember)752.3.1.121. passwordIsGlobalPolicy (Password Policy and Replication)762.3.1.122. passwordKeepHistory762.3.1.123. passwordLockout (Account Lockout)762.3.1.124. passwordLockoutDuration (Lockout Duration)772.3.1.125. passwordMaxAge (Password Maximum Age)772.3.1.126. passwordMaxFailure (Maximum Password Failures)782.3.1.127. passwordMaxRepeats (Password Syntax)782.3.1.128. passwordMin8Bit (Password Syntax)782.3.1.129. passwordMinAge (Password Minimum Age)792.3.1.130. passwordMinAlphas (Password Syntax)792.3.1.131. passwordMinCategories (Password Syntax)792.3.1.132. PasswordMinDigits (Password Syntax)802.3.1.133. passwordMinLength (Password Minimum Length)802.3.1.134. PasswordMinLowers (Password Syntax)802.3.1.135. PasswordMinSpecials (Password Syntax)812.3.1.136. PasswordMinTokenLength (Password Syntax)812.3.1.137. PasswordMinUppers (Password Syntax)812.3.1.138. passwordMustChange (Password Must Change)812.3.1.139. passwordResetDuration822.3.1.140. passwordResetFailureCount (Reset Password Failure Count After)822.3.1.141. passwordRetryCount832.3.1.142. passwordStorageScheme (Password Storage Scheme)832.3.1.143. passwordUnlock (Unlock Account)832.3.1.144. passwordWarning (Send Warning)842.3.1.145. retryCountResetTime842.3.2. cn=changelog5852.3.2.1. nsslapd-changelogdir852.3.2.2. nsslapd-changelogmaxage (Max Changelog Age)862.3.2.3. nsslapd-changelogmaxentries (Max Changelog Records)862.3.2.4. changes872.3.2.5. changeLog872.3.2.6. changeNumber872.3.2.7. changeTime872.3.2.8. changeType872.3.2.9. deleteOldRdn882.3.2.10. filterInfo882.3.2.11. newRdn882.3.2.12. newSuperior882.3.2.13. targetDn882.3.3. cn=encryption892.3.3.1. nsSSLSessionTimeout892.3.3.2. nsSSLclientauth892.3.3.3. nsSSL2892.3.3.4. nsSSL3902.3.3.5. nsSSL3ciphers902.3.4. cn=features912.3.4.1. oid912.3.5. cn=mapping tree922.3.6. Suffix Configuration Attributes under cn="suffixName"922.3.6.1. nsslapd-state922.3.6.2. nsslapd-backend932.3.7. Replication Attributes under cn=replica, cn="suffixDN", cn=mapping tree, cn=config932.3.7.1. nsDS5Flags932.3.7.2. nsds5DebugReplicaTimeout942.3.7.3. nsDS5ReplConflict942.3.7.4. nsDS5ReplicaAutoReferral942.3.7.5. nsDS5ReplicaBindDN942.3.7.6. nsDS5ReplicaChangeCount952.3.7.7. nsDS5ReplicaId952.3.7.8. nsDS5ReplicaLegacyConsumer952.3.7.9. nsDS5ReplicaName962.3.7.10. nsDS5ReplicaPurgeDelay962.3.7.11. nsDS5ReplicaReferral972.3.7.12. nsDS5ReplicaRoot972.3.7.13. nsDS5ReplicaTombstonePurgeInterval972.3.7.14. nsDS5ReplicaType982.3.7.15. nsDS5ReplicaReapActive982.3.7.16. nsds5Task992.3.7.17. nsState992.3.8. Replication Attributes under cn=ReplicationAgreementName, cn=replica, cn="suffixName", cn=mapping tree, cn=config992.3.8.1. cn992.3.8.2. description992.3.8.3. nsDS5ReplicaBindDN992.3.8.4. nsDS5ReplicaBindMethod1002.3.8.5. nsDS5ReplicaBusyWaitTime1002.3.8.6. nsDS5ReplicaChangesSentSinceStartup1012.3.8.7. nsDS5ReplicaCredentials1012.3.8.8. nsDS5ReplicaHost1012.3.8.9. nsDS5ReplicaLastInitEnd1022.3.8.10. nsDS5ReplicaLastInitStart1022.3.8.11. nsDS5ReplicaLastInitStatus1022.3.8.12. nsDS5ReplicaLastUpdateEnd1032.3.8.13. nsDS5ReplicaLastUpdateStart1032.3.8.14. nsDS5ReplicaLastUpdateStatus1042.3.8.15. nsDS5ReplicaPort1042.3.8.16. nsDS5ReplicaReapActive1042.3.8.17. nsDS5BeginReplicaRefresh1052.3.8.18. nsDS5ReplicaRoot1052.3.8.19. nsDS5ReplicaSessionPauseTime1052.3.8.20. nsDS5ReplicatedAttributeList1062.3.8.21. nsDS5ReplicaTimeout1062.3.8.22. nsDS5ReplicaTransportInfo1072.3.8.23. nsDS5ReplicaUpdateInProgress1072.3.8.24. nsDS5ReplicaUpdateSchedule1072.3.8.25. nsDS50ruv1082.3.8.26. nsruvReplicaLastModified1082.3.9. Synchronization Attributes under cn=syncAgreementName, cn=WindowsReplica,cn="suffixName", cn=mapping tree, cn=config1082.3.9.1. nsds7DirectoryReplicaSubtree1092.3.9.2. nsds7DirsyncCookie1092.3.9.3. nsds7NewWinGroupSyncEnabled1092.3.9.4. nsds7NewWinUserSyncEnabled1092.3.9.5. nsds7WindowsDomain1102.3.9.6. nsds7WindowsReplicaSubtree1102.3.9.7. winSyncInterval1102.3.10. cn=monitor1112.3.11. cn=replication1132.3.12. cn=sasl1132.3.12.1. nsSaslMapBaseDNTemplate1132.3.12.2. nsSaslMapFilterTemplate1142.3.12.3. nsSaslMapRegexString1142.3.13. cn=SNMP1142.3.13.1. nssnmpenabled1142.3.13.2. nssnmporganization1142.3.13.3. nssnmplocation1152.3.13.4. nssnmpcontact1152.3.13.5. nssnmpdescription1152.3.13.6. nssnmpmasterhost1152.3.13.7. nssnmpmasterport1162.3.14. SNMP Statistic Attributes1162.3.15. cn=tasks1182.3.15.1. Task Invocation Attributes for Entries under cn=tasks1192.3.15.2. cn=import1222.3.15.3. cn=export1252.3.15.4. cn=backup1282.3.15.5. cn=restore1292.3.15.6. cn=index1302.3.15.7. cn=schema reload task1322.3.15.8. cn=memberof task1332.3.16. cn=uniqueid generator1342.4. Configuration Object Classes1342.4.1. changeLogEntry (Object Class)1342.4.2. directoryServerFeature (Object Class)1352.4.3. nsBackendInstance (Object Class)1362.4.4. nsChangelog4Config (Object Class)1362.4.5. nsContainer (Object Class)1372.4.6. nsDS5Replica (Object Class)1372.4.7. nsDS5ReplicationAgreement (Object Class)1382.4.8. nsDSWindowsReplicationAgreement (Object Class)1402.4.9. nsMappingTree (Object Class)1422.4.10. nsSaslMapping (Object Class)1422.4.11. nsslapdConfig (Object Class)1432.4.12. passwordpolicy (Object Class)1432.5. Legacy Attributes1452.5.1. Legacy Server Attributes1462.5.1.1. LDAPServer (Object Class)1462.5.1.2. changeLogMaximumAge1462.5.1.3. changeLogMaximumConcurrentWrites1472.5.1.4. changeLogMaximumSize1472.5.1.5. generation1472.5.1.6. nsSynchUniqueAttribute1472.5.1.7. nsSynchUserIDFormat1472.5.2. Legacy Replication Attributes1482.5.2.1. cirReplicaSource (Object Class)1482.5.2.2. cirBeginORC1492.5.2.3. cirBindCredentials1492.5.2.4. cirBindDN1492.5.2.5. cirHost1492.5.2.6. cirLastUpdateApplied1502.5.2.7. cirPort1502.5.2.8. cirReplicaRoot1502.5.2.9. cirSyncInterval1502.5.2.10. cirUpdateFailedAt1502.5.2.11. cirUpdateSchedule1512.5.2.12. cirUsePersistentSearch1512.5.2.13. cirUseSSL1512.5.2.14. LDAPReplica (Object Class)1512.5.2.15. replicaAbandonedChanges1522.5.2.16. replicaBeginOrc1532.5.2.17. replicaBindDn1532.5.2.18. replicaBindMethod1532.5.2.19. replicaCFUpdated1532.5.2.20. replicaCredentials1532.5.2.21. replicaEntryFilter1542.5.2.22. replicaHost1542.5.2.23. replicaLastRelevantChange1542.5.2.24. replicaNickName1542.5.2.25. replicaPort1542.5.2.26. replicaRoot1552.5.2.27. replicatedAttributeList1552.5.2.28. replicaUpdateFailedAt1552.5.2.29. replicaUpdateReplayed1552.5.2.30. replicaUpdateSchedule1552.5.2.31. replicaUseSSL156Chapter 3. Plug-in Implemented Server Functionality Reference1573.1. Server Plug-in Functionality Reference1573.1.1. 7-bit Check Plug-in1573.1.2. ACL Plug-in1583.1.3. ACL Preoperation Plug-in1583.1.4. Attribute Uniqueness Plug-in1593.1.5. Binary Syntax Plug-in1593.1.6. Boolean Syntax Plug-in1603.1.7. Case Exact String Syntax Plug-in1603.1.8. Case Ignore String Syntax Plug-in1613.1.9. Chaining Database Plug-in1613.1.10. Class of Service Plug-in1613.1.11. Country String Syntax Plug-in1623.1.12. Distinguished Name Syntax Plug-in1623.1.13. Distributed Numeric Assignment Plug-in1633.1.14. Generalized Time Syntax Plug-in1633.1.15. HTTP Client Plug-in1643.1.16. Integer Syntax Plug-in1643.1.17. Internationalization Plug-in1643.1.18. JPEG Syntax Plug-in1653.1.19. ldbm database Plug-in1653.1.20. Legacy Replication Plug-in1663.1.21. MemberOf Plug-in1663.1.22. Multi-master Replication Plug-in1673.1.23. Octet String Syntax Plug-in1673.1.24. OID Syntax Plug-in1673.1.25. Password Storage Schemes1683.1.26. Postal Address String Syntax Plug-in1693.1.27. PTA Plug-in1703.1.28. Referential Integrity Postoperation Plug-in1703.1.29. Retro Changelog Plug-in1713.1.30. Roles Plug-in1723.1.31. Schema Reload Plug-in1723.1.32. Space Insensitive String Syntax Plug-in1733.1.33. State Change Plug-in1733.1.34. Telephone Syntax Plug-in1743.1.35. URI Syntax Plug-in1743.1.36. Views Plug-in1743.2. List of Attributes Common to All Plug-ins1753.2.1. nsSlapdPlugin1753.2.2. nsslapd-pluginPath1763.2.3. nsslapd-pluginInitfunc1763.2.4. nsslapd-pluginType1763.2.5. nsslapd-pluginEnabled1763.2.6. nsslapd-pluginId1773.2.7. nsslapd-pluginVersion1773.2.8. nsslapd-pluginVendor1773.2.9. nsslapd-pluginDescription1773.3. Attributes Allowed by Certain Plug-ins1783.3.1. nsslapd-pluginLoadNow1783.3.2. nsslapd-pluginLoadGlobal1783.3.3. nsslapd-plugin-depends-on-type1783.3.4. nsslapd-plugin-depends-on-named1793.4. Database Plug-in Attributes1793.4.1. Database Attributes under cn=config, cn=ldbm database, cn=plugins, cn=config1793.4.1.1. nsLookThroughLimit1803.4.1.2. nsslapd-idlistscanlimit1803.4.1.3. nsslapd-cache-autosize1803.4.1.4. nsslapd-cache-autosize-split1813.4.1.5. nsslapd-dbcachesize1823.4.1.6. nsslapd-db-checkpoint-interval1823.4.1.7. nsslapd-db-circular-logging1833.4.1.8. nsslapd-db-debug1833.4.1.9. nsslapd-db-durable-transactions1833.4.1.10. nsslapd-db-home-directory1843.4.1.11. nsslapd-db-idl-divisor1853.4.1.12. nsslapd-db-logbuf-size1853.4.1.13. nsslapd-db-logdirectory1863.4.1.14. nsslapd-db-logfile-size1863.4.1.15. nsslapd-db-page-size1873.4.1.16. nsslapd-db-spin-count1873.4.1.17. nsslapd-db-transaction-batch-val1873.4.1.18. nsslapd-db-trickle-percentage1883.4.1.19. nsslapd-db-verbose1893.4.1.20. nsslapd-dbncache1893.4.1.21. nsslapd-directory1903.4.1.22. nsslapd-import-cachesize1903.4.1.23. nsslapd-import-cache-autosize1903.4.1.24. nsslapd-mode1923.4.2. Database Attributes under cn=monitor, cn=ldbm database, cn=plugins, cn=config1923.4.3. Database Attributes under cn=NetscapeRoot, cn=ldbm database, cn=plugins, cn=config and cn=userRoot, cn=ldbm database, cn=plugins, cn=config1933.4.3.1. nsslapd-cachesize1933.4.3.2. nsslapd-cachememsize1943.4.3.3. nsslapd-directory1943.4.3.4. nsslapd-readonly1953.4.3.5. nsslapd-require-index1953.4.3.6. nsslapd-suffix1953.4.3.7. vlvBase1963.4.3.8. vlvEnabled1963.4.3.9. vlvFilter1973.4.3.10. vlvIndex (Object Class)1973.4.3.11. vlvScope1983.4.3.12. vlvSearch (Object Class)1983.4.3.13. vlvSort1993.4.3.14. vlvUses1993.4.4. Database Attributes under cn=database, cn=monitor, cn=ldbm database, cn=plugins, cn=config2003.4.5. Database Attributes under cn=default indexes, cn=config, cn=ldbm database, cn=plugins, cn=config2023.4.5.1. cn2023.4.5.2. description2033.4.5.3. nsIndex2033.4.5.4. nsIndexType2043.4.5.5. nsMatchingRule2043.4.5.6. nsSystemIndex2053.4.6. Database Attributes under cn=monitor, cn=NetscapeRoot, cn=ldbm database, cn=plugins, cn=config2053.4.7. Database Attributes under cn=index, cn=NetscapeRoot, cn=ldbm database, cn=plugins, cn=config and cn=index, cn=UserRoot, cn=ldbm database, cn=plugins, cn=config2063.4.7.1. nsSubStrBegin2063.4.7.2. nsSubStrEnd2073.4.7.3. nsSubStrMiddle2073.4.8. Database Attributes under cn=attributeName, cn=encrypted attributes, cn=database_name, cn=ldbm database, cn=plugins, cn=config2083.4.8.1. nsAttributeEncryption (Object Class)2093.4.8.2. nsEncryptionAlgorithm2093.5. Database Link Plug-in Attributes (Chaining Attributes)2093.5.1. Database Link Attributes under cn=config, cn=chaining database, cn=plugins, cn=config2103.5.1.1. nsActiveChainingComponents2103.5.1.2. nsMaxResponseDelay2103.5.1.3. nsMaxTestResponseDelay2113.5.1.4. nsTransmittedControls2113.5.2. Database Link Attributes under cn=default instance config, cn=chaining database, cn=plugins, cn=config2123.5.2.1. nsAbandonedSearchCheckInterval2123.5.2.2. nsBindConnectionsLimit2123.5.2.3. nsBindRetryLimit2123.5.2.4. nsBindTimeout2133.5.2.5. nsCheckLocalACI2133.5.2.6. nsConcurrentBindLimit2133.5.2.7. nsConcurrentOperationsLimit2143.5.2.8. nsConnectionLife2143.5.2.9. nsOperationConnectionsLimit2143.5.2.10. nsProxiedAuthorization2143.5.2.11. nsReferralOnScopedSearch2153.5.2.12. nsSizeLimit2153.5.2.13. nsTimeLimit2153.5.3. Database Link Attributes under cn=database_link_name, cn=chaining database, cn=plugins, cn=config2163.5.3.1. nsBindMechanism2163.5.3.2. nsFarmServerURL2173.5.3.3. nsMultiplexorBindDn2173.5.3.4. nsMultiplexorCredentials2173.5.3.5. nshoplimit2183.5.3.6. nsUseStartTLS2183.5.4. Database Link Attributes under cn=monitor, cn=database instance name, cn=chaining database, cn=plugins, cn=config2183.6. Retro Changelog Plug-in Attributes2193.6.1. nsslapd-changelogdir2203.6.2. nsslapd-changelogmaxage (Max Changelog Age)2203.7. Distributed Numeric Assignment Plug-in Attributes2213.7.1. dnaFilter2213.7.2. dnaMagicRegen2213.7.3. dnaMaxValue2223.7.4. dnaNextRange2223.7.5. dnaNextValue2233.7.6. dnaPrefix2233.7.7. dnaRangeRequestTimeout2233.7.8. dnaScope2243.7.9. dnaSharedCfgDN2243.7.10. dnaThreshold2253.7.11. dnaType2253.8. MemberOf Plug-in Attributes2253.8.1. memberofattr2263.8.2. memberofgroupattr226Chapter 4. Server Instance File Reference2274.1. Overview of Directory Server Files2274.2. Backup Files2284.3. Configuration Files2284.4. Database Files2284.5. LDIF Files2304.6. Lock Files2304.7. Log Files2314.8. PID Files2314.9. Tools2314.10. Scripts232Chapter 5. Log File Reference2335.1. Access Log Reference2335.1.1. Access Logging Levels2345.1.2. Default Access Logging Content2345.1.3. Access Log Content for Additional Access Logging Levels2415.1.4. Common Connection Codes2435.2. Error Log Reference2435.2.1. Error Log Logging Levels2445.2.2. Error Log Content2455.2.3. Error Log Content for Other Log Levels2465.3. Audit Log Reference2495.4. LDAP Result Codes251Chapter 6. Command-Line Utilities2536.1. Finding and Executing Command-Line Utilities2536.2. Using Special Characters2536.3. Command-Line Utilities Quick Reference2546.4. ldapsearch2546.5. ldapmodify2706.6. ldapdelete2766.7. ldappasswd2816.8. ldif2876.9. dbscan288Chapter 7. Command-Line Scripts2917.1. Finding and Executing Command-Line Scripts2917.2. Command-Line Scripts Quick Reference2917.3. Shell Scripts2937.3.1. bak2db (Restores a Database from Backup)2947.3.2. cl-dump (Dumps and Decodes the Changelog)2957.3.3. db2bak (Creates a Backup of a Database)2967.3.4. db2ldif (Exports Database Contents to LDIF)2967.3.5. db2index (Reindexes Database Index Files)2977.3.6. dbverify (Checks for Corrupt Databases)2987.3.7. ds_removal2997.3.8. ldif2db (Import)3007.3.9. ldif2ldap (Performs Import Operation over LDAP)3017.3.10. monitor (Retrieves Monitoring Information)3027.3.11. repl-monitor (Monitors Replication Status)3027.3.12. pwdhash (Prints Encrypted Passwords)3057.3.13. restart-slapd (Restarts the Directory Server)3057.3.14. restoreconfig (Restores Administration Server Configuration)3067.3.15. saveconfig (Saves Administration Server Configuration)3067.3.16. start-slapd (Starts the Directory Server)3067.3.17. stop-slapd (Stops the Directory Server)3077.3.18. suffix2instance (Maps a Suffix to a Backend Name)3077.3.19. vlvindex (Creates Virtual List View Indexes)3087.4. Perl Scripts3087.4.1. bak2db.pl (Restores a Database from Backup)3097.4.2. cl-dump.pl (Dumps and Decodes the Changelog)3107.4.3. db2bak.pl (Creates a Backup of a Database)3117.4.4. db2index.pl (Creates and Generates Indexes)3127.4.5. db2ldif.pl (Exports Database Contents to LDIF)3127.4.6. fixup-memberof.pl (Regenerate memberOf Attributes)3147.4.7. ldif2db.pl (Import)3147.4.8. logconv.pl (Log Converter)3167.4.9. migrate-ds.pl3197.4.10. migrate-ds-admin.pl3227.4.11. ns-accountstatus.pl (Establishes Account Status)3247.4.12. ns-activate.pl (Activates an Entry or Group of Entries)3247.4.13. ns-inactivate.pl (Inactivates an Entry or Group of Entries)3257.4.14. ns-newpwpolicy.pl (Adds Attributes for Fine-Grained Password Policy)3267.4.15. register-ds-admin.pl3277.4.16. remove-ds.pl3277.4.17. repl-monitor.pl (Monitors Replication Status)3287.4.18. schema-reload.pl (Reload Schema Files Dynamically)3317.4.19. setup-ds.pl3317.4.20. setup-ds-admin.pl3337.4.21. verify-db.pl (Check for Corrupt Databases)335Appendix A. Using the ns-slapd Command-Line Utilities337A.1. Overview of ns-slapd337A.2. Finding and Executing the ns-slapd Command-Line Utilities337A.3. Utilities for Exporting Databases: db2ldif337A.4. Utilities for Restoring and Backing up Databases: ldif2db339A.5. Utilities for Restoring and Backing up Databases: archive2db340A.6. Utilities for Restoring and Backing up Databases: db2archive341A.7. Utilities for Creating and Regenerating Indexes: db2index341Glossary343Index357Size: 2.16 MBPages: 374Language: EnglishOpen manual