I have a LDIF file that consists of a set of test users and I would like to change the passwords for these users.
I used the ldapmodify command:
ldapmodify -c -a -f filename.ldif -h localhost -p <port> -D dn -w <pwd> << !
dn: uid=<userid>,dc=<branch>,DC=COM
changetype: modify
replace: userPassword
userPassword: <new pwd>
!
And I get the following error:
ldap_sasl_interactive_bind_s: Can't contact LDAP server (-1)
Apply a set of add, delete, modify, and/or modify DN operations to a directory server. Supply the changes to apply in LDIF format, either from standard input or from a file specified with the 'ldifFile' argument. Change records must be separated by at least one blank line.
The sequence goes like this: 1 Issue the ldapmodify command (with appropriate options). 2 Inform ldapmodify what you are modifying. 3 Modify your data. 4 Escape with CTRL-d. 5 ldapmodify will make the changes.
Using LDIF, LDAP changes are simple written within files with an arbitrary name and then fed into the LDAP system using one of the available management commands. LDIF works using a basic key-value system, with one statement per-line. The key is on the left-hand side of a line followed by a colon (:) and a space.
Unnecessary space characters in the LDIF input file, such as a space at the end of an attribute value, will cause the LDAP operations to fail. Line 1:Every change record has, as its first line, the literal dn:followed by the DN value for the entry, for example:
The given error is an indication that the server specified by the hostname and port could not be contacted, that is, a connection could not be established. Also, the legacy OpenLDAP ldapmodify client defaults to a SASL bind when the -x command line option is not specified.
The LDIF input can contain any number of entries to be modified, not just one:
dn: uid=abc,dc=example,dc=com
changetype: modify
replace: userPassword
userPassword: the-new-password
dn: uid=def,dc=example,dc=com
changetype: modify
replace: userPassword
userPassword: another-new-password
ldapmodify -p 389 -D "" -w -a -c v -f pwd.ldif
pwd.ldif has below
dn: cn=config
changetype: modify
replace: root-dn-pwd
root-dn-pwd: xxxxxxx
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With