69315f3810
- Fixes a request type in an access management table Closes #1064 - Adds an admonition about PowerShell commands to Healthcheck API page Closes #1086 Staged: - [Request type fix](http://192.241.195.202:9000/staging/cleanups/windows/administration/identity-access-management/policy-based-access-control.html#userpolicy.writeonly) - [Healthcheck API](http://192.241.195.202:9000/staging/cleanups/windows/operations/monitoring/healthcheck-probe.html)
5.3 KiB
mc idp ldap accesskey ls
minio
Table of Contents
mc idp ldap accesskey list
mc idp ldap accesskey ls
Description
The mc idp ldap accesskey ls displays a list of LDAP access
key pairs.
mc idp ldap accesskey ls is also known as mc idp ldap accesskey list.
EXAMPLE
The following example returns a list of access keys associated with
the authenticated user on the minio alias <alias>:
- class
- copyable
mc idp ldap accesskey ls minio/
If the authenticated user has the admin:ListUsers
permission, the example command returns a list of all users and their
associated access keys.
SYNTAX
The command has the following syntax:
mc [GLOBALFLAGS] idp ldap accesskey ls \
ALIAS \
[--svcacc-only] \
[--temp-only] \
[--users-only] \
[DN] ...- Replace
ALIASwith thealias <alias>of a MinIO deployment configured for AD/LDAP integration. - Replace
DNwith the string of a user's distinguished name. You may list multiple distinguished names by separating each with a space.
Parameters
ALIAS
The alias <alias> of the MinIO deployment configured
for AD/LDAP.
For example:
mc idp ldap accesskey ls minio--svcacc-only
Output only service account access keys.
Mutually exclusive with ~mc idp ldap accesskey ls --temp-only.
--temp-only
Output only temporary access keys.
Mutually exclusive with ~mc idp ldap accesskey ls --svcacc-only.
--users-only
Output only the user distinguished names.
Examples
List All Access Keys
To return a list of all access keys, you must first authenticate as
the admin user. Once authenticated, the following command
returns all AD/LDAP access keys on the minio
deployment.
mc idp ldap accesskey ls minioNote
If the user does not have the admin:ListUsers
permission, the command returns a list of access keys for the
authenticated user only.
List User Distinguished Names
To return a list of DNs for a deployment, you must first authenticate
as a user with the admin:ListUsers permission. Once
authenticated, the following command outputs the AD/LDAP distinguished
names on the minio deployment.
mc idp ldap accesskey ls minio --users-onlyList Temporary Access Keys
To return a list of all temporary access keys for a deployment, you
must first authenticate as a user with the admin:ListUsers
permission. Once authenticated, the following command outputs a list of
distinguished names with their associated temporary access keys.
mc idp ldap accesskey ls minio --temp-onlyList a User's Access Keys
The following command returns the AD/LDAP access keys for the user
bobfisher on the minio deployment.
mc idp ldap accesskey list minio/ uid=bobfisher,dc=min,dc=ioList Access Keys for Multiple Users
The following command returns the AD/LDAP access keys for the users
bobfisher and cody3 on the minio
deployment.
mc idp ldap accesskey list minio/ uid=bobfisher,dc=min,dc=io uid=cody3,dc=min,dc=ioList Access Keys for Authenticated User
The following command returns the AD/LDAP access keys for the
currently authenticated user on the minio deployment.
mc idp ldap accesskey list minio/ Note
If the authenticated user has the admin:ListUsers
permission, the command returns a list of all users and access keys on
the deployment.