[Date Prev][Date Next] [Chronological] [Thread] [Top]

access control II


All entries have an {crypt} userPassword attribute on it.

I'm trying to implement an application over the Netscape Address Book.

I have a suffix "o=TUDelft, c=NL" 
and an organizationalUnit "ou=DIMES, o=TUDelft, c=NL"

I would like to have a private groupOfMail beneath
this organizationalUnit. So in the sladp.conf I have :

access to dn="cn=Owner of the Group, ou=DIMES, o=TUDelft, c=NL" 
	by self write
	by * none 
access to dn=".*, o=TUDelft, c=NL"
	by * search

The problem is that every couple mail/userPassword I enter on the
Authentication Window of Netscape Address Book grants me access to all
resources beneath the o=TUDelft, c=NL subtree

Is it a problem from the Netscape tool or from my slapd.conf file

Thank you very much.
> 1) does the entries you're trying to modify have
> userpassword
> attributes?
> 2) are you binding to the database with a proper DN
> and password?
> -Alan

| Luiz Ernesto Pinheiro Malere               malere@bestway.com.br |
| Software Design Informatica            (019) 254-6518 (Campinas) |
| Chave PGP e Dados Pessoais :   http://www.bestway.com.br/~malere |
Do You Yahoo!?
Get your free @yahoo.com address at http://mail.yahoo.com