|
|
|
Use the DXdelete tool to delete one or more directory entries. To delete a single entry, supply the target DN identification by a direct command-line entry. To delete multiple entries, use input from a file.
This command has the following format:
dxdelete [options] [dn-list]
Denotes one or more of the following options:
Runs in continuous mode. Errors are reported, but the process is not stopped.
Sets the LDAP debug levels.
Defines the level of debugging as follows:
-1 Enable all debugging
0 No debugging
1 Trace function
2 Debug packet handling
4 Heavy trace debugging
8 Connection management
16 Print out packages sent and received
32 Search filter processing
64 Configuration file processing
128 Access control list processing
256 Stats log connections/operations/results
512 Stats log entries sent
1024 Print communication with shell backends
2048 Print entry parsing debugging
You can add numbers together to specify multiple debug levels at the same time. For example, a debug level of 6 specifies the debugging levels of both 2 and 4.
Specifies the distinguished name of the user performing the bind.
Specifies a file to read from, rather than standard input.
Specifies the LDAP URI of the directory host. If you do not specify this, the tool uses localhost instead.
You can use an IPv6 address, as in the following example:
-H ldap://[2001:db8:0:1:99a4:6159:198f:b309]
Note: This option has been deprecated. Use the -H option instead. The -h option still works in the current version of CA Directory.
Specifies the address or host name of the directory host. If you do not specify this, the tool uses localhost instead.
You can include OSI addressing for transport, session, and presentation SAPs by fully expanding dap-host:
hostname:port/tsel/ssel/psel
You can include binary and ASCII characters in the tsel, ssel, and psel selectors, using the % followed by the two hexadecimal digits that represent the ASCII code for the character, for example:
Specifies the time limit in seconds for each DAP operation.
Enables the Manage DSA IT control.
Enables the Manage DSA IT control, and makes it critical. For more information, see LDAP Controls in the Administration Guide.
Shows what would be done, but does not actually do it. Use with the -v option for debugging.
Specifies the LDAP protocol. By default, this is set to 3.
Specifies the port on directory host computer. If you do not specify this, the tool uses port 102, the OSI port, by default
You can combine the -h and -p arguments into a single argument, and express them as a dotted IP address or hostname. For example, you can replace the options on the first line with those on the second:
-h 192.168.19.202 -p 19389
-h 192.168.19.202:19389
Makes any delete operation recursive.
Runs in verbose mode.
Prompts the user for the bind password.
Specifies the bind password.
Specifies a file that contains the bind password.
Specifies that the tool should start a TLS request, using the specified configuration file. If you omit the filename, the tool uses DXHOME/config/ssld/dxldap.conf.
Use -ZZ to require a response from the DSA when a request is successful.
Specifies distinguished names to be deleted. Separate DNs with spaces.
Example: Delete an Entry
This example uses the Democorp sample directory supplied with CA Directory. You can repeat this example as a training exercise.
The following command deletes the entry Murray J Horsfall:
dxdelete -v -h hostname:19389 "cn=Murray J HORSFALL,ou=Repair, ou=Operations,o=Democorp,c=AU"
To test that the entry was deleted, use the DXsearch tool.
| Copyright © 2011 CA. All rights reserved. | Email CA Technologies about this topic |