dsconfig get-root-dn-prop — Shows Root DN properties
dsconfig get-root-dn-prop
{options}
The dsconfig get-root-dn-prop command takes the following options:
--property {property}
The name of a property to be displayed.
Root DN properties depend on the Root DN type, which depends on the {property} you provide.
By default, OpenDJ directory server supports the following Root DN types:
Default {property}: Root DN
Enabled by default: false
See the section called “Root DN” for the properties of this Root DN type.
-E | --record
Modifies the display output to show one property value per line.
Root DN properties depend on the Root DN type, which depends on the null you provide.
By default, OpenDJ directory server supports the following Root DN types:
Default null: Root DN
Enabled by default: false
See the section called “Root DN” for the properties of this Root DN type.
-z | --unit-size {unit}
Display size data using the specified unit. The value for UNIT can be one of b, kb, mb, gb, or tb (bytes, kilobytes, megabytes, gigabytes, or terabytes).
Root DN properties depend on the Root DN type, which depends on the {unit} you provide.
By default, OpenDJ directory server supports the following Root DN types:
Default {unit}: Root DN
Enabled by default: false
See the section called “Root DN” for the properties of this Root DN type.
-m | --unit-time {unit}
Display time data using the specified unit. The value for UNIT can be one of ms, s, m, h, d, or w (milliseconds, seconds, minutes, hours, days, or weeks).
Root DN properties depend on the Root DN type, which depends on the {unit} you provide.
By default, OpenDJ directory server supports the following Root DN types:
Default {unit}: Root DN
Enabled by default: false
See the section called “Root DN” for the properties of this Root DN type.
Root Dns of type root-dn have the following properties:
Specifies the names of the privileges that root users will be granted by default.
bypass-lockdown
bypass-acl
modify-acl
config-read
config-write
ldif-import
ldif-export
backend-backup
backend-restore
server-lockdown
server-shutdown
server-restart
disconnect-client
cancel-request
password-reset
update-schema
privilege-change
unindexed-search
subentry-write
changelog-read
Allows the user to request that the server process backup tasks.
Allows the user to request that the server process restore tasks.
Allows the associated user to bypass access control checks performed by the server.
Allows the associated user to bypass server lockdown mode.
Allows the user to cancel operations in progress on other client connections.
Allows the user to perform read operations on the changelog
Allows the associated user to read the server configuration.
Allows the associated user to update the server configuration. The config-read privilege is also required.
Allows the user to participate in data synchronization.
Allows the user to terminate other client connections.
Allows the associated user to subscribe to receive JMX notifications.
Allows the associated user to perform JMX read operations.
Allows the associated user to perform JMX write operations.
Allows the user to request that the server process LDIF export tasks.
Allows the user to request that the server process LDIF import tasks.
Allows the associated user to modify the server's access control configuration.
Allows the user to reset user passwords.
Allows the user to make changes to the set of defined root privileges, as well as to grant and revoke privileges for users.
Allows the user to use the proxied authorization control, or to perform a bind that specifies an alternate authorization identity.
Allows the user to place and bring the server of lockdown mode.
Allows the user to request that the server perform an in-core restart.
Allows the user to request that the server shut down.
Allows the associated user to perform LDAP subentry write operations.
Allows the user to request that the server process a search that cannot be optimized using server indexes.
Allows the user to make changes to the server schema.
Yes
No
None
No
No