On Sun, 2005-12-04 at 17:44 -0500, Jeff Clowser wrote: > Craig White wrote: > > >and lastly...despite the documentation, I can't get ldapsearch to return > >the list of ACI's... > > > >./ldapsearch -h localhost -D 'cn=Directory Manager' -w - '(aci=*)' > > > > > aci's are operational attributes, which means you have to specifically > ask for it - i.e.: > > ./ldapsearch -h localhost -D 'cn=Directory Manager' -w - '(aci=*)' aci > > (note the aci added to the end.) ---- ok, I didn't understand that in the documentation as the word aci was apparently wrapped to another line. Your example didn't work but this did... ./ldapsearch -h localhost -b "dc=azapple,dc=com" \ -D 'cn=Directory Manager' -w - '(aci=*)' aci I did have to have a base for the search. now I'm working through the answers that I got concerning the specific ACI's and my Address Books - thanks Craig
