[Date Prev][Date Next] [Chronological] [Thread] [Top]

ldapdelete and SASL Digest-MD5

To: openldap-software@OpenLDAP.org
Subject: ldapdelete and SASL Digest-MD5
From: Lara Adianto <m1r4cle_26@yahoo.com>
Date: Wed, 18 Feb 2004 04:44:01 -0800 (PST)

Hi,

I managed to delete entry using simple authentication,
but not with SASL Digest-MD5 (with password in sasldb)

[root@localhost tmp]# ldapdelete -D
"cn=Manager,dc=example,dc=com" -Y DIGEST-MD5
"dc=example,dc=com" -v
ldap_initialize( <DEFAULT> )
Enter LDAP Password:
SASL/DIGEST-MD5 authentication started
SASL username: root
SASL SSF: 128
SASL installing layers
deleting entry "dc=example,dc=com"
Delete Result: Insufficient access (50)

I believe I have given the right DN, and there's no
restriction in my ACL...
What could be the possible cause of this problem ?
ldapsearch with Digest-MD5 works okay, but not
ldapadd...
 
env:
Openldap-2.1.25
Cyrus-SASL 2.1.15
BerkeleyDB.4.1
No Kerberos
No TLS

******* slapd.conf ********
include		/usr/local/etc/openldap/schema/core.schema

loglevel	256
pidfile		/usr/local/var/slapd.pid
argsfile	/usr/local/var/slapd.args

database        bdb
suffix		"dc=example,dc=com"
rootdn		"cn=Manager,dc=example,dc=com"
directory	"/var/lib/ldap"

index	objectClass	eq
index   cn		pres,eq
index   uid		pres,eq

access to *
       by * read
************************************************

Thanks for your help,
lara

=====
------------------------------------------------------------------------------------ 
La vie, voyez-vous, ca n'est jamais si bon ni si mauvais qu'on croit
                                                                        - Guy de Maupassant -
------------------------------------------------------------------------------------

__________________________________
Do you Yahoo!?
New Yahoo! Photos - easier uploading and sharing.
http://photos.yahoo.com/

Prev by Date: "allow bind_v2" but "requested protocol version not allowed"
Next by Date: Password Aging
Index(es):
- Chronological
- Thread