CONFIG LDAP UPDATE

Level

admin,modify

Description

Update the LDAP configuration

History

realbind and FullAdminDN appear in 3.0.0
protectchars removed in 3.4.0
pageSize appears in 4.4.0

Usage

internal LDAP:
[domainname=<domain>] [HASH=<hash>] [FWCA=<fwca>] [FirewallID=<firewallid>] [nestedgroups=0|1]
external LDAP:
[domainname=<domain>] [HASH=<hash>] [FWCA=<fwca>] [FirewallID=<firewallid>]
[basedn=<Base DN>] [host=<Host IP>] [port=<Port>] [backuphost=<host IP> [backupport=<Port>]]
[user=<LDAP User> [password=<LDAP password>]] [auth=Simple|SSL] [cacert=<certname>]
[usersdn=<users dn>] [serversdn=<servers dn>] [groupsdn=<groups dn>] [confdn=<config dn>]
[usersfilter=<LDAP filter for users>] [serversfilter=<LDAP filter for servers>]
[groupsfilter=<LDAP filter for groups>] [cndn=0|1] [ReadOnly=<0|1>]
[groupschema=groupofmember|posixgroup] [realbind=on|off] [realbindaddr=<IP>] [FullAdminDN=0|1]
[nestedgroups=0|1] [pageSize=<LDAP page size>]

Returns

Error code

Remark

method and hash are method used for a new user.
fwca is the path of the CA certificat (Only in an EXTERNAL LDAP database)
FirewallID update does NOT updates LDAP existing objects !

Example

CONFIG LDAP UPDATE hash=SSHA
CONFIG LDAP UPDATE fwca="cn=autority, ou=cas, o=stormshield, dc=eu"
CONFIG LDAP UPDATE FWID=Main_Firewall
CONFIG LDAP UPDATE domainname=ororo.munroe realbind=0