On Tue, Dec 14, 1999 at 05:26:24PM +0000, Stuart Henderson mentioned:
> > I have all our users details on the LDAP server, and I'm trying to write a
> > webpage that will allow them to modify and add to their own attributes.
> >
> > Has anyone setup OpenLDAP ACLs to authenticate off their unix password
> > (which is stored as "userpassword={crypt}gkkVVixG7" etc.) ? Even generic
> > ACL docs would be cunning - they seem fairly thin on the ground.
>
> How about something like this...
>
> defaultaccess none
> access to dn=".*,ou=foo,o=bar"
> by self write
That looks sufficent. However, the LdapBind function in TCL requires a
BindDN. Is there an "anonymous" BindDN ? Can I create one that just has
default access ?
> http://www.umich.edu/~dirsvcs/ldap/doc/guides/slapd/5.html#RTFToC20
> sec 5.3.5 may help if you haven't found it yet.
Nice one. I'd not found it.
John
--
Microsoft. The best reason in the world to drink beer.
http://www.redbrick.dcu.ie/~valen
Attachment:
pgpmJd1YKscsU.pgp
Description: PGP signature