man-dsframework.xml revision 51607ea01068c9047391e4c8b46bc9dbd0edb7fd
<?xml version="1.0" encoding="UTF-8"?>
! This work is licensed under the Creative Commons
! Attribution-NonCommercial-NoDerivs 3.0 Unported License.
! To view a copy of this license, visit
! or send a letter to Creative Commons, 444 Castro Street,
! Suite 900, Mountain View, California, 94041, USA.
! You can also obtain a copy of the license at
! trunk/opendj3/legal-notices/CC-BY-NC-ND.txt.
! See the License for the specific language governing permissions
! and limitations under the License.
! If applicable, add the following below this CCPL HEADER, with the fields
! enclosed by brackets "[]" replaced with your own identifying information:
! Portions Copyright [yyyy] [name of copyright owner]
! Copyright 2011-2013 ForgeRock AS
<refentry xml:id='dsframework-1'
version='5.0' xml:lang='en'
<info><copyright><year>2011-2013</year><holder>ForgeRock AS</holder></copyright></info>
<refmiscinfo class="software">OpenDJ</refmiscinfo>
<refmiscinfo class="version"><?eval ${docTargetVersion}?></refmiscinfo>
<refpurpose>manage OpenDJ administration framework</refpurpose>
<arg choice="req">options</arg>
<para>This utility can be used to perform operations in the directory server
administration framework.</para>
<para>This utility has no interactive mode. Consider using <option>-X</option>
if you authenticate over a secure connection protected with a self-signed
<para>The <command>dsconfig</command> command provides many subcommands.
Use the following options to view help for subcommands.</para>
<para>Display all subcommands</para>
<para>Display subcommands relating to admin-user</para>
<para>Display subcommands relating to server</para>
<para>Display subcommands relating to server-group</para>
<para>For help with individual subcommands, use <command>dsframework
<replaceable>subcommand</replaceable> --help</command>.</para>
<para>The following options are supported.</para>
<title>LDAP Connection Options</title>
<term><option>--connectTimeout {timeout}</option></term>
<para>Maximum length of time (in milliseconds) that can be taken to
establish a connection. Use '0' to specify no time out.</para>
<para>Default value: 30000</para>
<term><option>-h, --hostname {host}</option></term>
<para>Directory server hostname or IP address</para>
<para>Default value: localhost.localdomain</para>
<term><option>-I, --adminUID {adminUID}</option></term>
<para>User ID of the global administrator to use to bind to the server.
For the <command>enable</command> subcommand, if no global administrator
was defined previously for any servers, the global administrator will be
created using the UID provided.</para>
<para>Default value: admin</para>
<term><option>-j, --adminPasswordFile {bindPasswordFile}</option></term>
<para>Global administrator password file</para>
<term><option>-K, --keyStorePath {keyStorePath}</option></term>
<para> Certificate key store path</para>
<term><option>-N, --certNickname {nickname}</option></term>
<para>Nickname of certificate for SSL client authentication</para>
<term><option>-o, --saslOption {name=value}</option></term>
<para>SASL bind options</para>
<term><option>-p, --port {port}</option></term>
<para>Directory server administration port number</para>
<para>Default value: 4444</para>
<term><option>-P, --trustStorePath {trustStorePath}</option></term>
<para>Certificate trust store path</para>
<para>Default value: /path/to/opendj/config/admin-truststore</para>
<term><option>-T, --trustStorePassword {trustStorePassword}</option></term>
<para>Certificate trust store PIN</para>
<term><option>-u, --keyStorePasswordFile {keyStorePasswordFile}</option></term>
<para>Certificate key store PIN file</para>
<term><option>-U, --trustStorePasswordFile {path}</option></term>
<para>Certificate trust store PIN file</para>
<term><option>-w, --adminPassword {bindPassword}</option></term>
<para>Password for the global administrator</para>
<term><option>-W, --keyStorePassword {keyStorePassword}</option></term>
<para>Certificate key store PIN</para>
<term><option>-X, --trustAll</option></term>
<para>Trust all server SSL certificates</para>
<title>Utility Input/Output Options</title>
<para>No properties file will be used to get default command line
argument values</para>
<term><option>--propertiesFilePath {propertiesFilePath}</option></term>
<para>Path to the file containing default property values used for
command line arguments</para>
<term><option>-v, --verbose</option></term>
<para>Use verbose mode</para>
<title>General Options</title>
<term><option>-V, --version</option></term>
<para>Display version information</para>
<term><option>-?, -H, --help</option></term>
<para>Display usage information</para>
<title>Exit Codes</title>
<para>The command completed successfully.</para>
<term>&gt; 0</term>
<para>An error occurred.</para>
<para>This example lists server properties.</para>
$ dsframework -p 4444 -h -D "cn=Directory Manager"
-w password -X list-server-properties
Option Types:
r -- Property value(s) are readable
w -- Property value(s) are writable
m -- The property is mandatory
s -- The property is single-valued
Property Options Syntax Default value
ldapsport rw-- INTEGER -
certificate rw-s STRING -
hostname r-ms STRING localhost
ldapport rwm- INTEGER 389
jmxsEnabled rw-s BOOLEAN false
instancepath rw-s STRING -
ldapsEnabled rw-s BOOLEAN false
jmxsport rw-- INTEGER -
os rw-s STRING -
ds-cfg-key-id rw-s STRING -
jmxport rw-- INTEGER -
description rw-s STRING -
id rw-s STRING -
startTLSEnabled rw-s BOOLEAN false
jmxEnabled rw-s BOOLEAN false
ds-cfg-public-key-certificate rw-s CERTIFICATE_BINARY -
location rw-s STRING -
ldapEnabled rw-s BOOLEAN false</screen>