[Date Prev][Date Next] [Chronological] [Thread] [Top]

Simplest of access rights not working for me.

To: openldap-software@OpenLDAP.org
Subject: Simplest of access rights not working for me.
From: "Chuck A. Phillips" <chuckp@unm.edu>
Date: Thu, 2 Mar 2000 00:20:49 -0700 (MST)

What the heck am I missing??
I have trimmed down my access list to as simple as I can.

>From my slapd.conf:
database        ldbm
suffix          "o=UNM, c=US"
directory       /openldap/db
rootdn          "cn=Directory Manager, o=UNM, c=US"
rootpw          secret

access to attr=userpassword
       by self write
       by dn="uid=chuckp, ou=people, o=UNM, c=US" write
       by * none

However, I still can't access the passwords for anybody other than myself.

ldapsearch -W -D "uid=chuckp, ou=people, o=UNM, c=US"\
    -h ldap.unm.edu -b "o=UNM, c=US"\
    "(uid=joeblow)" userpassword

returns:
  uid=joeblow, ou=people, o=UNM, c=US

While the Directory Manager can read the password
ldapsearch -W -D "cn=Directory Manager, o=UNM, c=US"\
    -h ldap.unm.edu -b "o=UNM, c=US"\
    "(uid=joeblow)" userpassword

returns:
  uid=joeblow, ou=people, o=UNM, c=US
  userpassword: {crypt}MD1Try.mXQaQY

	

                                                Chuck Phillips
                                                chuckp@unm.edu
        <+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+>

Follow-Ups:
- Re: Simplest of access rights not working for me.
  - From: Niels Baggesen <Niels.Baggesen@uni-c.dk>

Prev by Date: Re: Maximum number of entries in a container?
Next by Date: Re: Simplest of access rights not working for me.
Index(es):
- Chronological
- Thread