[Date Prev][Date Next] [Chronological] [Thread] [Top]

ldap_modify: Insufficient access

I am running OpenLDAP 1.2.11 [with GDBM] on Solaris OS. I have created a
root entry called "ou=People, dc=myCompany, dc=com" and under people I
have added about 40 entries with DN similar to
"uid=userId, ou=People, dc=myCompany, dc=com".

I have the following access control directive in slapd.conf

access to dn=".*,dc=myCompany,dc=com" attr=userPassword
by self write
by * none
access to dn=".*,dc=myCompany,dc=com"
by self write
by dn=".*,dc=myCompany,dc=com" search
by domain=.*\.myCompany\.com read
by * none

When I try to modify my own entry from the same machine where the ldapserver
is running,
with the following command:
	ldapmodify -D "uid=jagan,ou=People,dc=myCompany,dc=com" -w password -f

I get the following message:
	modifying entry uid=jagan, ou=People, dc=myCompany, dc=com
	ldap_modify: Insufficient access

The contents of test.ldif are as follows:

dn: uid=jagan,ou=People,dc=myCompany,dc=com
changetype: modify
add: mail
mail: mailID@mailServer.com
replace: title
title: Tech. Architect
add: description
description: LDAP developer

If you have an answer for this behavior, please let me know where is
the problem.

Thanks in advance for any kind of help