[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: (ITS#5805) Problem when modifying access control

To: openldap-its@OpenLDAP.org
Subject: Re: (ITS#5805) Problem when modifying access control
From: ando@sys-net.it
Date: Mon, 17 Nov 2008 13:34:38 GMT

emmanuel.duru@atosorigin.com wrote:
>> Emmanuel Duru wrote:
>>> I wouldn't say that it is harmless.
>> I'm not saying your problem is harmless.  I'm saying that having a
>> rootdn of cn=config that is not within cn=config but with the rootpw is
>> a violation of slapd's configuration rules (when the rootdn is not
>> within the naming context, it cannot have a rootpw set).
>>
> 
> But I don't.
> My rootdn is cn=manager,c=fr which is a real entry in the c=fr database
> (bdb) with the password in the entry and no rootpw neither in c=fr nor in
> cn=config.

You do, since you modify the configuration using the cn=config rootdn in 
order to modify itself, and set it to cn=manager,c=fr.  So in the first 
place you had a rootdn in cn=config, with a rootpw.  And the 
modification you posted did not remove the rootpw.

p.


Ing. Pierangelo Masarati
OpenLDAP Core Team

SysNet s.r.l.
via Dossi, 8 - 27100 Pavia - ITALIA
http://www.sys-net.it
-----------------------------------
Office:  +39 02 23998309
Mobile:  +39 333 4963172
Fax:     +39 0382 476497
Email:   ando@sys-net.it
-----------------------------------

Prev by Date: RE: (ITS#5805) Problem when modifying access control
Next by Date: RE: (ITS#5805) Problem when modifying access control
Index(es):
- Chronological
- Thread