[Date Prev][Date Next] [Chronological] [Thread] [Top]

Question "Authentification"

To: <openldap-software@OpenLDAP.org>
Subject: Question "Authentification"
From: <philippe.broussard@e-qual.fr>
Date: Thu, 12 Jun 2003 09:50:18 +0200
Importance: Normal

Hi,


I would know :

	When an user wants authenticate to a LDAP base,
		--> the server connects (bind) to the database as
anonymous
		
		--> search in the database if the user exists and if the
user can read or write the attibute userPassword

		--> so the server connects (bind) to the database as
user


I have supposed this working through this ACL :

>access to attr=userPassword
>        by      dn.exact="cn=AdminContacts,ou=Contacts,dc=e-qual,dc=fr"
write
>        by      anonymous       auth
>        by      self            write
>        by      *               none

>access to dn.subtree="ou=Contacts,dc=e-qual,dc=fr"
>        by      dn.exact="cn=AdminContacts,ou=Contacts,dc=e-qual,dc=fr"
write
>        by      *               none

># access par default
>access to *
>        by self write
>        by users read
>        by anonymous read


If I'm wrong, could you explain me how works precisely the
authentification ?


Thanks

Philippe

Follow-Ups:
- Re: Question "Authentification"
  - From: tsg <tsg@bugalux.com>

Prev by Date: Re: correct structural object class for ou=People
Next by Date: Re: Building a private backend
Index(es):
- Chronological
- Thread