[Date Prev][Date Next] [Chronological] [Thread] [Top]

ACL doesn't work

To: OpenLDAP-software@OpenLDAP.org
Subject: ACL doesn't work
From: "Zamangoer, Ferruh" <ferruh.zamangoer@materna.de>
Date: Wed, 20 Mar 2002 17:38:37 +0100

Hi All ,

I have the following problems I want to define a ACL, which allows every
user to read,serach only his own data my ACL is:



defaultaccess  none

#Everybody can read his own(self) data 
access to attr=*
        by self read  (I remember that read contains search and compare) 
        
# that only everyone self and the admin can change the password (1)
access to attr=userpassword
       by self write
       by dn="cn=admin,dc=iqdoq,dc=de" write
       by self read

#that nobody have access to admin(2)
access to dn="cn=admin,dc=iqdoq,dc=de"
       by * none


If I use the defaultaccess read and deactivate (1)(2) I can search and
becomes hits. But I can read information from everybody, how can I solve
them.


please can anybody help ????


thanks in advance

Ferruh

Follow-Ups:
- Re: ACL doesn't work
  - From: Craig Squires <csquires@math.mun.ca>

Prev by Date: RE: Using loglevel
Next by Date: RE: Using loglevel
Index(es):
- Chronological
- Thread