ldapenforcer #

LDAPEnforcer is a tool for enforcing LDAP policies

Synopsis #

LDAPEnforcer is a command line tool for managing and enforcing policies on LDAP directories.

Options #

      --bind-dn string                DN for binding to LDAP
      --ca-cert-file string           Path to CA certificate file for LDAPS
      --config string                 Config file path
      --enforced-group-ou string      Full OU for enforced groups
      --enforced-people-ou string     Full OU for enforced people
      --enforced-svcacct-ou string    Full OU for enforced service accounts
  -h, --help                          help for ldapenforcer
      --ldap-log-level string         LDAP-specific log level (ERROR, WARN, INFO, DEBUG, TRACE) (default "INFO")
      --ldap-uri string               LDAP URI (e.g. ldap://example.com:389)
      --log-level string              Main log level (ERROR, WARN, INFO, DEBUG, TRACE) (default "INFO")
      --password string               Password for binding to LDAP
      --password-command string       Command to execute to retrieve the password
      --password-command-via-shell    Execute password command via shell (using sh -c)
      --password-file string          File containing the password for binding to LDAP
      --poll-config-interval string   Interval for --poll mode to check if the config file has changed and sync if so (recommended: "10s") (default "10s")
      --poll-ldap-interval string     Interval for --poll mode to compare the config file to the LDAP server and sync if different (recommended: "24h") (default "24h")

SEE ALSO #

• ldapenforcer config-show - Display the current configuration
• ldapenforcer sync - Synchronize LDAP with configuration
• ldapenforcer verify - Verify LDAP against configuration
• ldapenforcer version - Print the version number of LDAPEnforcer

Auto generated by spf13/cobra on 3-Apr-2025 #