dirxextop

Synopsis

dirxextop
    [-h host]
    [-p port_number]
    [-D bind_DN]
    [-w password]
    [-z pwdfile]
    [-E0]
    [-E1]
    [-E2]
    [-C certDB_path]
    [-b]
    -t {OID | keyword}
    [-TL]
    [-TD]
    [{-S | -H}]
    [-d]
    [-P parameter]
    [-v] |
    -? |
    -V

Purpose

Performs a single LDAP extended operation.

Options

-h host

  • Specifies the host name or IP address of the LDAP server. The default is localhost.

-p port_number

  • Specifies the port number of the LDAP server. The default is 389.

-D bind_DN

  • Specifies the distinguished name in LDAP format that dirxextop is to use when binding to the LDAP server; for example, cn=admin,o=My-Company. If this option is not used, dirxextop binds as an anonymous user.

-w password

  • Specifies the password that dirxextop is to use when binding to the LDAP server.

-z pwdfile

  • Specifies the absolute or relative path name of the file that contains the password for the user specified in the -D option.

    The password must be the only content of this file. When creating the file, the password must be specified in plain ASCII format. When dirxextop reads the password for the first time, it encrypts it and reuses the encrypted format in subsequent starts.

-E0

  • Specifies that dirxextop uses a server-authenticated SSL/TLS connection without server certificate checking.

-E1

  • Specifies that dirxextop uses a server-authenticated SSL/TLS connection with server certificate checking.

-E2

  • Specifies that dirxextop uses a client-authenticated SSL/TLS connection with SASL method EXTERNAL. The certificate of the user specified in the -D option is used from cert8.db. Specify the password for accessing the private key in key3.db in the -w or -z option.

-C certDB_path

  • Specifies the full qualified name of the directory that contains the SSL/TLS key material, that is cert8.db and key3.db. If the -C option is absent and the -E0 or -E1 or -E2 option is present the certDB_path is $DIRX_INST_PATH/client/conf.

-b

  • Performs the external operation without binding to the LDAP server. The extended operation is performed as anonymous user.

-t {OID | keyword}

  • This required option specifies the object identifier (OID) or keyword of the extended operation. Use one of the following known object identifiers (OIDs) or keywords:

OID Keyword Description

1.3.12.2.1107.1.3.2.11.0

ldap_extop_info

Displays a list of all supported LDAP extended operations.

1.3.12.2.1107.1.3.2.11.1

ldap_mib_static

Displays the LDAP MIB static table.

1.3.12.2.1107.1.3.2.11.2

ldap_mib_total

Displays the LDAP MIB total table.

1.3.12.2.1107.1.3.2.11.3

ldap_mib_current

Displays the LDAP MIB current table.

1.3.12.2.1107.1.3.2.11.4

ldap_mib_assoc

Displays the LDAP MIB association table.

1.3.12.2.1107.1.3.2.11.5

ldap_mib_env

Displays the LDAP MIB environment table.

1.3.12.2.1107.1.3.2.11.6

ldap_cache_info

Displays configuration information and statistical information of the LDAP cache.

1.3.12.2.1107.1.3.2.11.7

ldap_audit_info

Displays current audit status and audit configuration of the LDAP server.

1.3.12.2.1107.1.3.2.11.8

ldap_audit_start

Starts LDAP server auditing.

1.3.12.2.1107.1.3.2.11.9

ldap_audit_stop

Stops LDAP server auditing.

1.3.12.2.1107.1.3.2.11.10

ldap_host_ips

Displays the IP addresses of the host.

1.3.12.2.1107.1.3.2.11.11

ldap_cfg_defaults

Displays the default values for the LDAP server configuration.

1.3.12.2.1107.1.3.2.11.12

ldap_pstack

Displays LDAP server thread stacks.

1.3.12.2.1107.1.3.2.11.13

ldap_bt_dump

Dumps the content of the bind table of the LDAP server.

1.3.12.2.1107.1.3.2.11.14

ldap_idm_dump

Dumps the content of the IDM connection table of the LDAP server.

1.3.12.2.1107.1.3.2.11.15

ldap_cache_start

Starts caching of LDAP search results.

1.3.12.2.1107.1.3.2.11.16

ldap_cache_stop

Stops caching of LDAP search results.

1.3.12.2.1107.1.3.2.11.17

ldap_cache_dump

Dumps configuration information, statistical information, and all saved results to the file install_path*/ldap/log/cache*process_id*.txt* where process_id is the process ID of the LDAP server.

1.3.12.2.1107.1.3.2.11.18

ldap_cache_clear

Removes all saved results from the LDAP server cache.

1.3.12.2.1107.1.3.2.11.19

ldap_audit_evaluate

Evaluates LDAP server audit.

1.3.12.2.1107.1.3.2.11.20

ldap_rusage

Displays LDAP server process specific system resource information.

1.3.12.2.1107.1.3.2.11.21

ldap_pfiles

Displays LDAP server process specific file descriptor usage.

1.3.12.2.1107.1.3.2.11.22

ldap_top

Displays LDAP server top process information.

1.3.12.2.1107.1.3.2.11.23

ldap_status

Displays LDAP server status information.

1.3.12.2.1107.1.3.2.11.25

ldap_pmap

Displays the LDAP server process memory-mapping table.

1.3.12.2.1107.1.3.2.11.26

ldap_ctxinfo

Displays LDAP server CTX usage information.

1.3.12.2.1107.1.3.2.11.27

ldap_netstat

Displays the port numbers used by the LDAP server.

1.3.12.2.1107.1.3.2.11.28

ldap_audit_err

Evaluates and displays erroneous operations from LDAP server auditing.

1.3.12.2.1107.1.3.2.11.29

ldap_exceptions

Displays LDAP server exceptions.

1.3.12.2.1107.1.3.2.11.30

ldap_op_history

Displays the LDAP server operation statistics of the last recent 24 hours.

1.3.12.2.1107.1.3.2.11.31

ldap_ssl_ciphernames

Displays the SSL cipher names supported.

1.3.12.2.1107.1.3.2.11.32

ldap_mib_total_tevd

Displays internal data of the LDAP MIB total table.
For DirX Directory Nagios plugins.

1.3.12.2.1107.1.3.2.11.33

ldap_mib_current_tevd

Displays internal data of the LDAP MIB current table.
For DirX Directory Nagios plugins.

1.3.12.2.1107.1.3.2.11.34

ldap_no_of_fds

Displays the number of file descriptors or handles used by the LDAP server.
For DirX Directory Nagios plugins.

1.3.12.2.1107.1.3.2.11.35

ldap_show_op_priv

Displays required privileges for LDAP extended operations.

1.3.12.2.1107.1.3.2.11.36

ldap_show_priv_users

Displays the users allowed to perform LDAP extended operations.

1.3.12.2.1107.1.3.2.11.37

ldap_mib_dump

Writes the information in all MIB tables except the MIB association table to the file mib*pid.txt* where pid is the process ID of the LDAP server. This file is written to the same directory as the usual log files, by default to the directory install_path*/ldap/log*.

1.3.12.2.1107.1.3.2.11.39

ldap_ssl_ctx_update

Triggers the renewal of the CRLs that the LDAP server uses to check user certificates in the context of ldap sasl binds. The CRLs are updated with the content of the files configured in the attribute LDAP SSL CRL Filenames (ldapSslCrlFileNames).

1.3.12.2.1107.1.3.2.11.47

ldap_cfg_upd

Activates one or more changes to an LDAP server’s configuration subentry without having to re-start the server. (See the ldap_cfg_upd reference page in DirX Directory LDAP Extended Operations for details.)

1.3.12.2.1107.1.3.2.11.48

ldap_show_cfg_general

Displays the current settings for attributes of an LDAP server’s configuration subentry. (See the ldap_show_cfg_general reference page in DirX Directory LDAP Extended Operations for details.)

1.3.12.2.1107.1.3.2.11.49

ldap_show_cfg_ssl

Displays the current settings for attributes of an LDAP server’s SSL configuration subentry. (See the ldap_show_cfg_ssl reference page in DirX Directory LDAP Extended Operations for details.)

1.3.12.2.1107.1.3.2.11.50

ldap_show_cfg_audit

Displays the current settings for attributes of an LDAP server’s audit configuration subentry. (See the ldap_show_cfg_audit reference page in DirX Directory LDAP Extended Operations for details.)

1.3.12.2.1107.1.3.2.11.51

ldap_show_cfg_upd_history

Displays the details of the last 25 updates to an LDAP server’s configuration subentry. (See the ldap_show_cfg_upd_history reference page in DirX Directory LDAP Extended Operations for details.)

1.3.12.2.1107.1.3.2.11.52

ldap_show_cfg_upd_attr

Displays the list of LDAP server configuration subentry attributes that can be dynamically updated. (See the ldap_show_cfg_upd_attr reference page in DirX Directory LDAP Extended Operations for details.)

1.3.12.2.1107.1.3.2.11.53

ldap_enable_config_dsa

Enables the specified contact DSA. (See the ldap_enable_config_dsa reference page in DirX Directory LDAP Extended Operations for details.)

1.3.12.2.1107.1.3.2.11.54

ldap_disable_config_dsa

Disables the specified contact DSA. (See the ldap_disable_config_dsa reference page in DirX Directory LDAP Extended Operations for details.)

1.3.12.2.1107.1.3.2.11.55

ldap_show_config_dsas

Displays the currently active contact DSA table. (See the ldap_show_config_dsas reference page in DirX Directory LDAP Extended Operations for details.)

1.3.12.2.1107.1.3.2.11.56

ldap_show_policy_rules

Displays the all policies in effect. (See the ldap_show_policy_rules reference page in DirX Directory LDAP Extended Operations for details.)

1.3.12.2.1107.1.3.2.11.57

ldap_show_policy_users

Displays all users for whom policies are in effect. (See the ldap_show_policy_users reference page in DirX Directory LDAP Extended Operations for details.)

1.3.12.2.1107.1.3.2.11.58

ldap_show_single_user_policy_rules

Displays all policies in effect for a specific user. (See the ldap_show_single_user_policy_rules reference page in DirX Directory LDAP Extended Operations for details.)

1.3.12.2.1107.1.3.2.13.1

dsa_nmi_show

Displays the application and DSA MIBs.

1.3.12.2.1107.1.3.2.13.2

dsa_dbam_mib_show

Displays the DSA DBAM MIB.

1.3.12.2.1107.1.3.2.13.3

dsa_entry_info_get

Displays the entry information.

1.3.12.2.1107.1.3.2.13.4

dsa_dbam_mib_enable

Enables the DSA DBAM MIB.

1.3.12.2.1107.1.3.2.13.5

dsa_dbam_mib_disable

Disables the DSA DBAM MIB.

1.3.12.2.1107.1.3.2.13.6

dsa_nmi_show_dap

Displays the DSA MIB of DAP connections.

1.3.12.2.1107.1.3.2.13.7

dsa_nmi_show_dsp

Displays the DSA MIB of DSP connections.

1.3.12.2.1107.1.3.2.13.8

dsa_nmi_show_disp

Displays the DSA MIB of DISP connections.

1.3.12.2.1107.1.3.2.13.9

dsa_pstack

Displays the DSA thread stacks.

1.3.12.2.1107.1.3.2.13.10

dsa_bt_dump

Dumps the content of the bind table of the DSA.

1.3.12.2.1107.1.3.2.13.11

dsa_idm_dump

Dumps the content of the IDM connection table of the DSA.

1.3.12.2.1107.1.3.2.13.12

dsa_disp_flow_counter

Displays the DSA DISP flow counters.

1.3.12.2.1107.1.3.2.13.13

dsa_rusage

Displays DSA process specific system resource information.

1.3.12.2.1107.1.3.2.13.14

dsa_pfiles

Displays DSA process specific file descriptor usage.

1.3.12.2.1107.1.3.2.13.15

dsa_top

Displays DSA top process specific information.

1.3.12.2.1107.1.3.2.13.16

dsa_status

Displays DSA process status information.

1.3.12.2.1107.1.3.2.13.17

dsa_smaps

Displays DSA smaps.

1.3.12.2.1107.1.3.2.13.18

dsa_pmap

Displays DSA process memory-mapping table.

1.3.12.2.1107.1.3.2.13.19

dsa_dbam_devinfo

Displays information about the capacity of the logical and the attribute index specific devices of the database.

1.3.12.2.1107.1.3.2.13.20

dsa_iostat

Displays DSA I/O traffic information.

1.3.12.2.1107.1.3.2.13.21

dsa_ctxinfo

Displays DSA CTX usage information.

1.3.12.2.1107.1.3.2.13.22

dsa_audit_evaluate

Evaluates the DSA auditing.

1.3.12.2.1107.1.3.2.13.23

dsa_audit_enable

Enables DSA auditing.

1.3.12.2.1107.1.3.2.13.24

dsa_audit_disable

Disables DSA auditing.

1.3.12.2.1107.1.3.2.13.25

dsa_audit_info

Displays the configuration parameters of DSA auditing.

1.3.12.2.1107.1.3.2.13.26

dsa_dbam_config

Displays the properties of the database profiles.

1.3.12.2.1107.1.3.2.13.27

dsa_netstat

Displays the port numbers used by the DSA.

1.3.12.2.1107.1.3.2.13.28

dsa_exceptions

Displays DSA exceptions. On Windows, this operation is not available.

1.3.12.2.1107.1.3.2.13.29

dsa_history_dap

Displays 24 hours DAP performance counters.

1.3.12.2.1107.1.3.2.13.30

dsa_history_dsp

Displays 24 hours DSP performance counters.

1.3.12.2.1107.1.3.2.13.31

dsa_history_disp

Displays 24 hours DISP performance counters.

1.3.12.2.1107.1.3.2.13.32

dsa_index_info

Displays the current attribute index configuration.

1.3.12.2.1107.1.3.2.13.33

dsa_dbam_backup

Invokes writing a DBAM backup.

1.3.12.2.1107.1.3.2.13.34

dsa_disp_monitor

Displays internal data related to the DSA’s replication component.

1.3.12.2.1107.1.3.2.13.35

dsa_server_files

Displays the number of files located under install_path*/server.*
For DirX Directory Nagios plugins.

1.3.12.2.1107.1.3.2.13.36

dsa_dbam_preload_status

Displays the status of the DBAM buffer cache preloader.
For DirX Directory Nagios plugins.

1.3.12.2.1107.1.3.2.13.37

dsa_get_opmode

Displays the current operation mode of the DSA.
For DirX Directory Nagios plugins.

1.3.12.2.1107.1.3.2.13.38

dsa_backup_status

Displays information about the last backup operations.
For DirX Directory Nagios plugins.

1.3.12.2.1107.1.3.2.13.39

dsa_no_of_fds

Displays the number of file descriptors or handles used by the DSA.
For DirX Directory Nagios plugins.

1.3.12.2.1107.1.3.2.13.40

dsa_paging_info

Returns information about paged search operations; for example, the maximum number of paged search operations and the current number of paged search operations.
For DirX Directory Nagios plugins.

1.3.12.2.1107.1.3.2.13.42

dsa_dbam_preload_on

Starts the DBAM buffer cache preloader.

1.3.12.2.1107.1.3.2.13.43

dsa_dbam_preload_off

Stops the DBAM buffer cache preloader.

1.3.12.2.1107.1.3.2.13.44

dsa_disp_role

Returns a string indicating the current shadowing role of the DSA. Possible roles are STANDALONE, CONSUMER, SUPPLIER or SUPPLIER+CONSUMER.

1.3.12.2.1107.1.3.2.13.46

dsa_dbam_aac

Manages the DBAM AVIDX access counter (AAC) statistic histories. (See the dsa_dbam_aac reference page in DirX Directory LDAP Extended Operations for details.)

1.3.12.2.1107.1.3.2.13.47

dsa_ac_log_on

Enables access control (AC) logging. (See the dsa_ac_log_on reference page in DirX Directory LDAP Extended Operations for details.)

1.3.12.2.1107.1.3.2.13.48

dsa_ac_log_off

Disables access control (AC) logging. (See the dsa_ac_log_off reference page in DirX Directory LDAP Extended Operations for details.)

1.3.12.2.1107.1.3.2.13.49

dsa_dirxadm_cmd

Performs a dirxadm command with a directory server that can only be accessed via LDAP protocol. This extended operation is available only on Linux systems. (See the dsa_dirxadm_cmd reference page in DirX Directory LDAP Extended Operations for details.)

1.3.12.2.1107.1.3.2.13.50

dsa_license_info

Displays the current license information used by the DSA.

1.3.12.2.1107.1.3.2.13.51

dsa_license_check

Reads the license file dirx.lic, checks it and updates the license information used by the DSA with the file’s content.

1.3.12.2.1107.1.3.2.13.52

dsa_relevant_aci

Searches for access control subentries that include the specified entry in the user classes. (See the dsa_relevant_aci reference page in DirX Directory LDAP Extended Operations for details.)

-TL

  • Displays an OID / keyword list of supported extended operations performed by the LDAP server.

-TD

  • Displays an OID / keyword list of supported extended operations performed by the DSA.

    The LDAP server receives this operation request and passes the operation to the DSA. The DSA performs the operation and returns the result to the LDAP server. The LDAP server returns the (DSA) result to the requestor.

-S | -H

  • Specifies the output format of the result. Specify either -S for string format output, or -H for hexdump format output. The default is string format output for known OIDs and hexdump format output for unknown OIDs.

-d

  • Displays the working profile.

-P parameter

  • Specifies a parameter for the following LDAP extended operations:

    • dsa_ac_log_on—(optional) Restricts the logging output to the information that is relevant to a particular type of operation. (See the dsa_ac_log_on reference page in DirX Directory LDAP Extended Operations for details.)

    • dsa_dbam_backup—(mandatory) Specifies the name of the archive file to which the database is written, for example archive01; the resulting database archive is written to install_path*/server/log* as install_path*/server/log/archive01.gz*. If a full path name is specified, for example D:\dirxArchives\archive01, the resulting database archive is located there, for example, D:\dirxArchives\archive01.gz.

    • dsa_dirxadm_cmd—(mandatory) Specifies the dirxadm operation as a simple unencoded string enclosed in double quotes ("*dirxadm_command"*).

    • dsa_relevant_aci—(optional) Specifies the distinguished name of the entry in LDAP format; for example, cn=admin,o=my-company. (For details about distinguished names in LDAP format, see the section Distinguished Names in the chapter DirX Directory String Representation for LDAP Binds in DirX Directory Syntaxes and Attributes.)

    • ldap_enable_config_dsa and ldap_disable_config_dsa—(mandatory) Specifies the DSA name of the contact DSA which should be enabled or disabled, for example /CN=sslDSA2.

    • ldap_mib_total_tevd and ldap_mib_current_tevd—(optional) Specifies the name of the delta counter to be updated; for example, SearchesDelta. (See the check_dirx_ldap_totals and check_dirx_ldap_current DirX Directory Nagios plugin reference pages in DirX Directory Plugins for Nagios for a list of valid delta counter names.) If not specified, all delta counters are updated.

    • ldap_show_single_user_policy_rules—(mandatory) Specifies the full qualified user’s distinguished name in LDAP format; for example, cn=admin,o=my-company. (For details about distinguished names in LDAP format, see the section Distinguished Names in the chapter DirX Directory String Representation for LDAP Binds in DirX Directory Syntaxes and Attributes.)

    • ldap_ssl_ciphernames—(optional) Specifies a cipher shortcut name, for example, RSA, MEDIUM or HIGH. (See parameter idm_ssl_ciphers_list and idm_ssl_ciphers_suites in IDMS Configuration and Key Material Files in the chapter DirX Directory Files for details.) If omitted, all supported cipher names are displayed.

-v

  • Enables verbose mode.

-?

  • Prints a command usage message.

-V

  • Displays the DirX Directory product version of this tool, in the format:

    product_version build_id date time

    For example:

    DirX Directory V9.0 9.4.428 2023:03:23 20:10 64-Bit

Description

The dirxextop command performs a single LDAP extended operation. (See section 4.12 Extended Operation in the Lightweight Directory Access Protocol (v3), RFC 2251, December 1997 for details on extended operations.) The extended operations provided by DirX Directory are designed mainly for support purposes. They provide management information base (MIB) table data and other diagnostic data of the DirX Directory server processes.

Some of the extended operations may also be performed via dirxadm, a DirX Directory command, or a system command; for example dirxadm ldap audit info. The advantage of using dirxextop is that the client performs the operation as a typical LDAP client via LDAP protocol, while the other commands use specific RPC ports and protocols.

Use the -h and the -p option to specify the IP address and port number of the LDAP server.

Use the -D and -w or -z option to provide bind information. Use the -b option to omit the bind operation and perform the extended operation as anonymous user. If an anonymous bind is performed or the operation is performed as anonymous user, the extended operation must not be restricted to any administrators.

Use the -t option to specify the extended operation to be performed. Specify either the object identifier (OID) or the keyword of the extended operation.

Use the -TL or the -TD option to display a list of supported extended operations.

Use the -S (string) or -H (hexadecimal) option to specify the output format.

Use the -d option to display the working profile. The working profile provides information about:

  • LDAP server

  • bind information

  • extended operation performed

Use the -v option to display detailed information about the operation.

The extended operations ldap_cfg_defaults, ldap_ext_info, ldap_show_config_dsas, ldap_ssl_ciphernames and startTLS are performed without any restriction or authentication. The LDAP Extended Operations Admins (ldapExtOpAdmins) attribute and the LDAP Extended Operations Admin Groups (ldapExtOpAdminGroups) attribute of the LDAP server configuration subentry controls the accessibility of all other extended operations; that is, the distinguished name specified in the -D option must be one of the values of the LDAP Extended Operations Admins attribute or the LDAP Extended Operations Admin Groups attribute to be allowed to perform an extended operation. For information about attributes for specifying more fine-grained access rights to LDAP extended operations, see the section Attributes Controlling LDAP Extended Operations in the chapter DirX Directory Attributes in DirX Directory Syntaxes and Attributes.

Examples

  • In the following example, the administrator requests the current audit status and configuration of the LDAP server (OID: 1.3.12.2.1107.1.3.2.11.7). He performs an anonymous bind to the local LDAP server and displays the working profile and detailed information about the operation.

    dirxextop -t 1.3.12.2.1107.1.3.2.11.7 -v -d

    The output of the sample command is as follows:

    dirxextop working profile:
LDAP server   : localhost:389
Bind DN       : anonymous
Password      : anonymous
ExtOp         : 1.3.12.2.1107.1.3.2.11.7
Omit Bind     : no
Show Time     : no
Verbosity     : 1
Start-Time: Wed Jan 09 09:01:07 2008V
Binding to master LDAP server (localhost:389) as 'anonymous'...OK.
Result of ExtOp :1.3.12.2.1107.1.3.2.11.7

==================== LDAP Audit Info  ===========================
Server            : DirX Directory V8.0 C 8.2.165 2008:01:04 20:10 (strong SSL)
32-Bit
Hostname          : baum.mch.my-company.de
Current Local Time: Wed Jan 09 09:01:07 2008
Status            : ON
Audit Version     : 8.2
Destination File  : C:\Program Files\DirX\Directory\ldap\audit\ldapConfiguration\audit.log
Audited Bytes     : 4526368
Record Limit      : 10000 records
Max File Size     : 256 MB
Records in File   : 32 records
Overall Records   : 32 records
Overflow Policy   : wraparound
Wrap Count        : 0
Move Count        : 0
Detail Level      : max
Value Limit       : 256
Op Selection      : all  (errors included)
Buffer Size       : 0
Start Time        : none
Stop Time         : none
Cron Job          : no
unlink() errors   : 0
rename() errors   : 0
Encryption        : none
SessTracking      : on
SessTrackingLen   : 64

  • In the following command, the administrator requests the DSA MIB.

    dirxextop -h localhost -p 389 -D cn=admin,o=pqr -w dirx -t dsa_nmi_show

    The output of the sample command is as follows:

    Result of ExtOp :1.3.12.2.1107.1.3.2.13.1
Entries table of the DSA MIB
  Master entries                 : 1560
  Copy entries                   : 0
  Cache entries                  : 0
  Cache hits                     : 0
  Slave hits                     : 0
Operations table of the DSA MIB
  DSA
    AnonymousBinds               : 6
    UnauthBinds                  : 0
    SimpleAuthBinds              : 0
    StrongAuthBinds              : 1
    BindSecErrs                  : 0
    InOps                        : 0
    ReadOps                      : 3
    CompOps                      : 0
    AddEntryOps                  : 0
    RemEntryOps                  : 0
    ModEntryOps                  : 0
    ModRDNOps                    : 0
    ListOps                      : 0
    SearchOps                    : 79
    OneLevelSearchOps            : 0
    WholeTreeSearchOps           : 77
    Referrals                    : 0
    Chs                          : 0
    SecErrs                      : 0
    Errs                         : 0
Application table of the DSA MIB
  Index                   : 0
  Name                    : DirX Directory
  DirName                 : cn=dirxdsa,o=my-company
  Version                 : 8.2.165 2008:01:04 20:10
  Uptime                  : Thu Jan 01 01:00:01 1970
  Operational status      : UP
  Inbound associations    : 6
  Outbound associations   : 0
  Total in-associations   : 7
  Total out-associations  : 1
  Rejected inbound assocs : 0
  Failed outbound assocs  : 0

  • In the following command, the administrator uses a plain connection to display the application and DSA MIBs:

    dirxextop -h localhost -p 389 -D cn=admin,o=pqr -w dirx -t 1.3.12.2.1107.1.3.2.13.1

  • In the following command, the administrator uses a server-authenticated SSL/TLS connection without server certificate checking to display the LDAP MIB static table:

    dirxextop -h localhost -p 636 -D cn=admin,o=pqr -w dirx -t ldap_mib_static -E0 -C C:\Program Files\DirX\Directory\Client\Conf

  • In the following command, the user uses a client-authenticated SSL/TLS connection with SASL EXTERNAL to display the current settings for attributes of an LDAP server’s configuration subentry:

    dirxextop -h localhost -p 636 -D mayer -w dirxdirx -t ldab_show_cfg_general -E2 -C C:\Program Files\DirX\Directory\Client\Conf

Exit Codes

The dirxextop command returns an exit code of 0 on success. It writes errors to stderr.

See Also

audit (dirxadm), ldap (dirxadm), nmi (dirxadm), LDAP MIB Tables, DirX Directory LDAP Extended Operations