CA Directory does provide tools for administration. One such tool is "dxmodify". dxmodify is used if we need to edit entries from CA Directory Server itself. We have CA Directory tools called "DXTools" which can be used by Directory Admins to Manage CA Directory..
However from a client perspective, a Client making LDAP calls should be able to search / add / modify / delete attributes.
Example : This a search I am running against a CA Directory running as a Policy Store using two tools i.e. One is a LDAP Client and other is from CA Directory Server using DXTools (dxsearch).
LDAP Client | DX Tools (from CA Directory Server) |
---|
ldapsearch -h cadir-ssodemo.ca.com -p 7771 -b "o=ca,c=us" -D "cn=smadmin,ou=admins,o=ca,c=us" -w - '(&(objectclass=smagent5)(cn=wa_test))' smAgentOID4 | dxsearch -h cadir-ssodemo.ca.com -p 7771 -b "o=ca,c=us" -D "cn=smadmin,ou=admins,o=ca,c=us" -W '(&(objectclass=smagent5)(cn=wa_test))' smAgentOID4 |
Thus as long as the Client is making legit LDAP Read / Write calls and CA Directory has the underlying schematics defined correctly, this should work fine.
Here is more reference material on "Connecting to Directory using LDAP".
Regards
Hubert