[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Small HOWTO about OpenLDAP2, SASL, Kerberos and SSL/TLS



> Do you have something like this in your ACL (in the right place)?
> 
> access to dn=".*,dc=slaco,dc=net"
>         by dn="uid=coen.+\+realm=SLACO.NET" write
> 

I added a slightly modified version to the ACL and now it seems to work.

So the slapd.access now looks like this:

<snip> // same as in Turbo's howto.

access to dn=".*,dc=slaco,dc=net"
        by dn="uid=leander,dc=slaco,dc=net" write
        by dn="uid=leander.+\+realm=SLACO.NET" write
        by dn="uid=ldapadm.+\+realm=SLACO.NET" write
        by self write
        by users read

# The admin dn has full write access
access to *
        by dn="uid=leander,dc=slaco,dc=net" write
        by dn="uid=leander.+\+realm=SLACO.NET" write
        by dn="uid=ldapadm.+\+realm=SLACO.NET" write
        by * read

Leander