mc idp ldap policy entities


The mc idp ldap policy entities command displays a list of mappings for a user, group, and/or policy.

The following example lists all mappings for a specific policy, a set of groups, and a selection of users on the myminio deployment.

Specifically, it lists:

  • Users mapped to the finteam-policy policy.

  • Policies assigned to the uid=bobfisher,ou=people,ou=hwengg,dc=min,dc=io user.

  • Policies assigned to the cn=projectb,ou=groups,ou=swengg,dc=min,dc=io group.

mc idp ldap policy entities myminio                                                  \
                            --policy finteam-policy                                  \
                            --user 'uid=bobfisher,ou=people,ou=hwengg,dc=min,dc=io'  \
                            --group 'cn=projectb,ou=groups,ou=swengg,dc=min,dc=io'

The command has the following syntax:

mc [GLOBALFLAGS] idp ldap policy entities                       \
                                 ALIAS                          \
                                 [--user `value`, -u `value`]   \
                                 [--group `value`, -g `value`]  \
                                 [--policy value]
  • Replace ALIAS with the alias of a MinIO deployment to configure for AD/LDAP integration.

  • You may use each of the --user, --group, and/or --policy flags as many times as desired in the command.

  • For each flag, the output lists the entities mapped to the specified policy, user, or group.

  • Omit all flags to return a list of mappings for all policies.

  • Brackets [] indicate optional parameters.

  • Parameters sharing a line are mutually dependent.

  • Parameters separated using the pipe | operator are mutually exclusive.

Copy the example to a text editor and modify as-needed before running the command in the terminal/shell.



The alias of the MinIO deployment for which to display the entity mappings.

For example:

mc idp ldap policy entities myminio


The following example lists the entities mapped to each of two policies, policy1 and policy2 and entities mapped to the projectb group on the myminio deployment:

mc idp ldap policy entities myminio                                                 \
                          policy1                                                 \
                          policy2                                                 \

Global Flags

This command supports any of the global flags.


S3 Compatibility

The mc commandline tool is built for compatibility with the AWS S3 API and is tested with MinIO and AWS S3 for expected functionality and behavior.

MinIO provides no guarantees for other S3-compatible services, as their S3 API implementation is unknown and therefore unsupported. While mc commands may work as documented, any such usage is at your own risk.