[Date Prev][Date Next] [Chronological] [Thread] [Top]

Authentication/ACL problem

To: openldap-software@OpenLDAP.org
Subject: Authentication/ACL problem
From: Edward Zarecor <edward@indeterminate.org>
Date: Tue, 30 Oct 2001 11:50:04 -0500
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:0.9.2) Gecko/20010726 Netscape6/6.1

I'm trying to add authentication to a working LDAP installation -- thanks to those who helped by the way.

Without authentication for read everything works correctly:

access to *
       by dn="cn=admin, dc=myorg, dc=org" write
       by anonymous read

After creating a special user for auth purposes -- ldapuser -- and changing the ACL as follows, I can authenticate successfully but no longer get any results back. It is as though my filtering rule in the LDAP client has changed by virtue of using authentication. I'm getting the same result from different clients. The modified ACL rule I'm using is:

access to *
      by dn="cn=admin,dc=myorg,dc=org" write
      by dn="cn=ldapuser,dc=myorg, dc=org" read
      by users read
      by self write
      by * auth

Thanks.

Ed.

Prev by Date: Re: Does openLDAP support two-way replication?
Next by Date: RE: copying ldap to other servers
Index(es):
- Chronological
- Thread