The Directory Server provides an ldapsearch tool to search for entries or attributes within your server. The tool requires the LDAP connection parameters needed to bind to the server, including the baseDN option to specify the starting point of the search within the server, and the search scope. The searchScope option determines the depth of the search:
  • base (search only the entry specified)
  • one (search only the children of the entry and not the entry itself)
  • sub (search the entry and its descendents)
The ldapsearch tool provides basic functionality as specified by the RFC 2254 but provides additional features that takes advantage of the Directory Server’s control mechanisms. For more information, run the ldapsearch --help function.