vserver services name-service ldap check
Display validation status of a LDAP configuration
Availability: This command is available to cluster and Vserver administrators at the admin privilege level.
Description
Use the vserver services name-service ldap check
command to check the status of the LDAP configuration.
Parameters
- {
[-fields <fieldname>,…]
-
If you specify the
-fields <fieldname>, …
parameter, the command output also includes the specified field or fields. You can use '-fields ?' to display the fields to specify. - |
[-instance ]
} -
If you specify the
-instance
parameter, the command displays detailed information about all fields. -vserver <Vserver Name>
- Vserver-
Use this parameter to specify the Vserver whose LDAP configuration needs to be validated.
[-client-config <text>]
- Client Configuration Name-
Use this parameter to specify the LDAP client configuration which is assigned to LDAP configuration for the specified Vserver.
[-ldap-status {up|down}]
- LDAP Status-
Use this parameter to display information only about LDAP configurations with a status that matches the value you specify.
[-ldap-status-details <text>]
- LDAP Status Details-
Use this parameter to display information only about LDAP configurations with a status detail that matches the value you specify.
[-ldap-dn-status-details <text>,…]
- LDAP DN Status Details-
Use this parameter to display information only about LDAP DN configurations with a status detail that matches the value you specify.
Examples
The following examples check the LDAP configuration on the SVM vs0:
cluster1::> vserver services name-service ldap check -vserver vs0 Vserver: vs0 Client Configuration Name: c1 LDAP Status: up LDAP Status Details: Successfully connected to LDAP server "10.11.12.13". LDAP DN Status Details: All the configured DNs are available.
cluster1::> vserver services name-service ldap check -vserver vs0 Vserver: vs0 Client Configuration Name: c1 LDAP Status: up LDAP Status Details: Successfully connected to LDAP server "10.11.12.13". LDAP DN Status Details: Validation of Domains specified in the LDAP client configuration failed. Reason: bind-dn is invalid or bind credentials are invalid. Correct the configuration and try again. In the above example, you can correct the LDAP configuration by performing either of the following procedures: -- If the bind-dn is invalid, use the "ldap client modify" command to correct it. -- If the bind credentials are invalid, use the "ldap client modify-bind-password" command to correct them.