Estou usando os utilitários do cliente OpenLDAP com o servidor de diretório 389 sob o CentOS 7.3. No exemplo abaixo, por que a autenticação falha quando eu uso -W para especificar que eu quero ser solicitado pela senha, enquanto ela falha quando uso -w para fornecer a senha na linha de comando?
[root@host-1 ~]# kdestroy
[root@host-1 ~]# kinit admin
Password for [email protected]:
[root@host-1 ~]# klist
Ticket cache: KEYRING:persistent:0:0
Default principal: [email protected]
Valid starting Expires Service principal
08/08/2018 11:15:15 08/09/2018 11:15:11 krbtgt/[email protected]
[root@host-1 ~]# # Use -W (uppercase) so I am prompted for the password.
[root@host-1 ~]# ldapsearch -x -D "cn=directory manager" -W -s base -b "" "objectclass=*"
Enter LDAP Password:
ldap_bind: Invalid credentials (49)
[root@host-1 ~]# # Use -w (lowercase) so I can enter the password on the command line.
[root@host-1 ~]# ldapsearch -x -D "cn=directory manager" -w <directory manager password> -s base -b "" "objectclass=*"
# extended LDIF
#
# LDAPv3
# base <> with scope baseObject
# filter: objectclass=*
# requesting: ALL
#
#
dn:
objectClass: top
...
<snipped>
...
ipaDomainLevel: 1
# search result
search: 2
result: 0 Success
# numResponses: 2
# numEntries: 1
[root@host-1 ~]#