Use the lsldap command to display the details for the system-wide Lightweight Directory Access Protocol (LDAP) configuration.
Attribute | Value |
---|---|
type | Indicates the LDAP server type. The values are:
|
enabled | Indicates whether native LDAP authentication is enabled. The value is yes or no/ |
error_sequence_number | Indicates the sequence number of non-fixed LDAP configuration error log. The value is a number (integer). |
username | Indicates the binding user name or distinguished name. The value is an alphanumeric string or blank if there is no name. |
security | Indicates the type of security in use. The values
are:
|
user_attribute | Indicates the LDAP attribute that represents the user login. |
group_attribute | Indicates the LDAP attribute that represents the user group membership. |
audit_log_attribute | Indicates the LDAP attribute that represents the user name in audit log. |
auth_cache_minutes | Indicates the period (in minutes) for which to cache session details. |
nested_group_search | Indicates the handling of nested groups. The
values are:
|
lsldap -delim :
The resulting output:
type:ad enabled:yes error_sequence_number:12 username:admin@company.com security:tls user_attribute:sAMAccountName group_attribute:memberOf audit_log_attribute:userPrincipalName auth_cache_minutes:10 nested_group_search:off