[Date Prev][Date Next] [Chronological] [Thread] [Top]


Hi All,
   I know how to define access control but I don't know how to create users.

Do I add rootdn, dn in database definition or I add entries like [dn:
cn=user1, dc=test, dc=com] using ldapadd after the creation of database.

I know it's a novice question but............

Thanx a lot in advance,

-----Original Message-----
From: owner-openldap-software@OpenLDAP.org
[mailto:owner-openldap-software@OpenLDAP.org]On Behalf Of Joseph Hoot
Sent: Tuesday, September 26, 2000 2:14 AM
To: openldap-software@OpenLDAP.org
Subject: Re: user authentication and changing passwords

sorry, left out a few lines of my slapd.conf.  Here they are:

# Allow clients to authenticate
access to
        by dn="cn=Manager,dc=nowcom,dc=com" write
        by * read

> I have the following ACL:
> # Deny all unless specifically allowed
> defaultaccess   none
> # Allow the manager and user to change the user's password
> access to attr=userpassword
>         by self write
>         by dn="cn=Manager,dc=nowcom,dc=com" write
>         by * search
> # Allow the following fields to be seen by the world
> access to attr=mail,cn,sn,givenname,o,ou,title,uid,telephoneNumber
>         by * read
> I am trying to A) authenticate users still and B) allow them to change
> passwords.   Currently both of these aren't working with the above ACL.

Joseph Hoot
System Administrator