[Date Prev][Date Next] [Chronological] [Thread] [Top]

ACLs

To: <openldap-software@OpenLDAP.org>
Subject: ACLs
From: a.brinkman@avades.nl (Alexander Brinkman)
Date: Wed, 14 Mar 2001 15:53:53 +0100
Importance: Normal

Here I go again :)

Everything with SASL and openLDAP is working now, except for the ACLs (I
think). I understand that there is no direct relationship between SASL users
(in Kerberos or SASLdb) and LDAP users (uid=xxx,ou=People,dc=domain,dc=org
for instance). But in that case: whats the point of authentication with
SASL?

I was pointed out that it could depend on my ACLs what users would get when
they're connecting with SASL, but I can't find good references to this.

When I do:
access to attr=userPassword
	by dn=".+" write
it works (openldap knows that SASL users are authenticated), but when I do:
access to attr=userPassword
	by self write
then it doesn't work. Is there a way to get this working?

Tia,
	Alexander.

--
AVADES INTERNET BV  http://www.avades.nl
Alexander Brinkman  a.brinkman@avades.nl

Follow-Ups:
- Re: ACLs
  - From: Wil Cooley <wcooley@nakedape.cc>
- Re: ACLs
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
- Re: ACLs
  - From: GOMBAS Gabor <gombasg@inf.elte.hu>
- Re: ACLs
  - From: Tomas Maly <malyprogservices@flashmail.com>

Prev by Date: help configure sasl
Next by Date: Openldap/TLS and Outlook Express
Index(es):
- Chronological
- Thread