LX0-104 · Question #170
Which of the following statements about the ldapsearch command are true? (Select THREE correct answers.)
The correct answer is A. With the -x option, the simple bind authentication method will be used. B. It is possible to configure a specific LDAP server for the search with the -h option. D. The -L option is useful when for viewing details of LDIF files.. This question assesses knowledge of various common ldapsearch command-line options and their functions related to authentication, server specification, and output formatting.
Question
Options
- AWith the -x option, the simple bind authentication method will be used.
- BIt is possible to configure a specific LDAP server for the search with the -h option.
- CThe -b option specifies the database where the LDIF file will be included.
- DThe -L option is useful when for viewing details of LDIF files.
- EThe -Z option requires a successful StartTLS operation in order to continue.
How the community answered
(63 responses)- A87% (55)
- C8% (5)
- E5% (3)
Why each option
This question assesses knowledge of various common `ldapsearch` command-line options and their functions related to authentication, server specification, and output formatting.
The `-x` option for `ldapsearch` explicitly forces simple authentication, which involves sending the bind DN and password, potentially in plain text if TLS/SSL is not used.
The `-h <host>` option specifies the LDAP server host to connect to for the search operation, allowing the user to target a particular server.
The `-b` option specifies the base Distinguished Name (DN) for the search, not a database for including an LDIF file.
The `-L` option tells `ldapsearch` to display entries in LDIF format without comments or version information, which is useful for viewing and processing LDIF file details.
The `-Z` option requests a StartTLS extended operation to upgrade an insecure connection to a secure one; while operations requiring security would fail if StartTLS fails, the command itself attempts the operation and does not strictly cease to run if StartTLS is unsuccessful, rather the subsequent secure communication would fail.
Concept tested: ldapsearch command options (authentication, host, output)
Source: https://manpages.debian.org/testing/ldap-utils/ldapsearch.1.en.html
Topics
Community Discussion
No community discussion yet for this question.