The register-yubikey-otp-device Command-Line Tool

Registers a YubiKey OTP device with the Directory Server for a specified user so that the device may be used to authenticate that user in conjunction with the UNBOUNDID-YUBIKEY-OTP SASL mechanism. Alternately, it may be used to deregister one or more YubiKey OTP devices for a user so that they may no longer be used to authenticate that user.

Usage

register-yubikey-otp-device {arguments}

LDAP Connection and Authentication Arguments

Additional Arguments

Dependent Argument Sets

Exclusive Argument Sets

Examples

    register-yubikey-otp-device --hostname server.example.com --port 389 \
         --bindDN uid=admin,dc=example,dc=com --bindPassword adminPassword \
         --authenticationID u:test.user --userPassword testUserPassword \
         --otp abcdefghijklmnopqrstuvwxyzabcdefghijklmnopqr
    register-yubikey-otp-device --hostname server.example.com --port 389 \
         --bindDN uid=admin,dc=example,dc=com --bindPassword adminPassword \
         --deregister \
         --authenticationID dn:uid=test.user,ou=People,dc=example,dc=com