SMM:08-84
Sendmail Installation and Operation Guide
list: user1, user2
list: user3
would be treated as though it were the single entry
list: user1, user2,
user3
in the presence of the -A flag.
Some additional flags are available for the host and dns maps:
-d
delay: specify the resolver's retransmission time interval (in seconds).
-r
retry: specify the number of times to retransmit a resolver query.
The following additional flags are present in the ldap map only:
-R
Do not auto chase referrals. sendmail must be compiled with -DLDAP_REFER-
RALS
to use this flag.
-n
Retrieve attribute names only.
-Vsep
Retrieve both attributes name and value(s), separated by sep.
-rderef
Set the alias dereference option to one of never, always, search, or find.
-sscope
Set search scope to one of base, one (one level), or sub (subtree).
-hhost
LDAP server hostname. Some LDAP libraries allow you to specify multiple,
space-separated hosts for redundancy. In addition, each of the hosts listed can be
followed by a colon and a port number to override the default LDAP port.
-pport
LDAP service port.
-H LDAPURI
Use the specified LDAP URI instead of specifying the hostname and port sepa-
rately with the the -h and -p options shown above. For example,
-h server.example.com -p 389 -b dc=example,dc=com
is equivalent to
-H ldap://server.example.com:389/dc=example,dc=com
If the LDAP library supports it, the LDAP URI format however can also request
LDAP over SSL by using ldaps:// instead of ldap://. For example:
O LDAPDefaultSpec=-H ldaps://ldap.example.com/dc=example,dc=com
Similarly, if the LDAP library supports it, It can also be used to specify a UNIX
domain socket using ldapi://:
O LDAPDefaultSpec=-H ldapi://socketfile/dc=example,dc=com
-bbase
LDAP search base.
-ltimelimit
Time limit for LDAP queries.
-Zsizelimit
Size (number of matches) limit for LDAP queries.
-ddistinguished_name
The distinguished name to use to login to the LDAP server.
-Mmethod
The method to authenticate to the LDAP server.
Should be one of
LDAP_AUTH_NONE
, LDAP_AUTH_SIMPLE, or LDAP_AUTH_KRBV4.
-Ppasswordfile
The file containing the secret key for the LDAP_AUTH_SIMPLE authentication
method or the name of the Kerberos ticket file for LDAP_AUTH_KRBV4.
-1
Force LDAP searches to only succeed if a single match is found. If multiple val-
ues are found, the search is treated as if no match was found.