[Date Prev][Date Next] [Chronological] [Thread] [Top]

ldap_modify: Insufficient access

To: <openldap-bugs@OpenLDAP.org>
Subject: ldap_modify: Insufficient access
From: "Jagannatha Reddy" <jagan@datamain.com>
Date: Tue, 25 Jul 2000 13:56:02 -0700
Importance: Normal
In-reply-to: <200007242220.e6OMKXn09923@galois.openldap.org>

I am running OpenLDAP 1.2.11 [with GDBM] on Solaris OS. I have created a
root entry called "ou=People, dc=myCompany, dc=com" and under people I
have added about 40 entries with DN similar to
"uid=userId, ou=People, dc=myCompany, dc=com".

I have the following access control directive in slapd.conf

access to dn=".*,dc=myCompany,dc=com" attr=userPassword
by self write
by * none
access to dn=".*,dc=myCompany,dc=com"
by self write
by dn=".*,dc=myCompany,dc=com" search
by domain=.*\.myCompany\.com read
by * none

When I try to modify my own entry from the same machine where the ldapserver
is running,
with the following command:
	ldapmodify -D "uid=jagan,ou=People,dc=myCompany,dc=com" -w password -f
test.ldif

I get the following message:
	modifying entry uid=jagan, ou=People, dc=myCompany, dc=com
	ldap_modify: Insufficient access

The contents of test.ldif are as follows:

dn: uid=jagan,ou=People,dc=myCompany,dc=com
changetype: modify
add: mail
mail: mailID@mailServer.com
-
replace: title
title: Tech. Architect
-
add: description
description: LDAP developer
-

If you have an answer for this behavior, please let me know where is
the problem.

Thanks in advance for any kind of help

-Jagan

Follow-Ups:
- Re: ldap_modify: Insufficient access
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
- mutex leak - OpenLDAP 1.2.11
  - From: Elouen LANOË <elouen.lanoe@ifrance.com>

References:
- Extended group ACL not properly parsed (ITS#637)
  - From: abrock@georgefox.edu

Prev by Date: Re: Extended group ACL not properly parsed (ITS#637)
Next by Date: Bogus pointer check in at.c (ITS#638)
Index(es):
- Chronological
- Thread