[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Trying to convert Netscape aci to OpenLDAP access

To: "Chuck A. Phillips" <chuckp@unm.edu>
Subject: Re: Trying to convert Netscape aci to OpenLDAP access
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Date: Sat, 19 Feb 2000 16:17:23 -0800
Cc: openldap-software@OpenLDAP.org
In-reply-to: <Pine.A41.4.21.0002162335230.10020-100000@ben15.unm.edu>

At 11:45 PM 2/16/00 -0700, Chuck A. Phillips wrote:
>Hi,
>	I have been trying, unsucsesfully, to convert some netscape
>aci statements to their OpenLDAP equivelant.  

Start by writing down an access policy in English (or your native
language).  Then implement this using OpenLDAP ACLs.

>Here are the NETSCAPE aci statements:

You might as well be speaking greek.

>Here is my latest attempt at the access statements:
>defaultaccess none
>access to *
>  by self write
>  by * read

To everything:
  If self, grant write.
  Else grant read.

remaining ACLs don't matter!

>Can anyone see what I am doing wrong??

Not starting with examples in the FAQ:
	http://www.openldap.org/faq/index.cgi?file=189

Not revewing the archives where there are numerous examples
with detail explainations.

References:
- Trying to convert Netscape aci to OpenLDAP access
  - From: "Chuck A. Phillips" <chuckp@unm.edu>

Prev by Date: Re: ldap_get_values: Decoding error
Next by Date: Re: Efficiency of Deletion
Index(es):
- Chronological
- Thread