[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ACL problem in OpenLDAP

To: openldap-software@openldap.org
Subject: Re: ACL problem in OpenLDAP
From: "Gavin Henry" <ghenry@suretecsystems.com>
Date: Thu, 5 Jul 2007 14:19:56 +0100 (BST)
Importance: Normal
In-reply-to: <468CD6B9.8070206@unlimitedmail.org>
References: <468CD6B9.8070206@unlimitedmail.org>
User-agent: SquirrelMail/1.4.10a-1.fc6

<quote who="JOYDEEP">
> Dear list,
>
> I am really fade up and need your kind guidance to solve the problem.
>
> I have OpenLDAP based addressbook. Users are located under
> ou=users,virtualDomain=kolkata.opendingo.com,dc=suse,dc=ldap
>
> basedn of personal adresbook
> ou=personal,ou=contacts,ou=contacts,virtualDomain=kolkata.opendingo.com,dc=suse,dc=ldap
>
> I need such an ACL so that only owner can read his addressbook.
>
> The ACL for this is
>
> access to
> dn.regex="cn=([^,]+),ou=personal,ou=contacts,ou=contacts,virtualDomain=([^,]+),dc=suse,dc=ldap$"
>   by dn.regex="uid=([^,]+),ou=users,virtualDomain=$2,dc=suse,dc=ldap"
> read
>   by users none
>
> but all the users can see others personal addresbook. Kindly suggest
> where I have done
> mistake. thanks for your kind support

Did you read http://www.openldap.org/faq/data/cache/1005.html

Gavin.

>
>

References:
- ACL problem in OpenLDAP
  - From: JOYDEEP <j.bakshi@unlimitedmail.org>

Prev by Date: Re: ACL problem in OpenLDAP
Next by Date: Re: Problem with connections: closed (connection lost)
Index(es):
- Chronological
- Thread