[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: OpenLDAP DN's permissions



Hi,

I believe you need to be binding as somebody who has authority to make
modifications to the database, i.e. use the rootdn and rootpw that you
defined in slapd.conf

Andy

On Wed, 15 Aug 2001, Igmar Palsenberg wrote:

>
> Hi,
>
> I've created a LDAP directory with data from /etc/passwd using the migrate
> filter.
>
> I've also added the following :
>
> dn:cn=ldapadm,dc=jdimedia,dc=local
> cn:ldapadm
> objectclass: person
> sn: admin
> userpassword:Some_Password
>
> The above DN has a password set with ldappasswd, so far so good.
>
> The only thing I can't get to work is :
>
> [root@wrkst /root]# ldapadd -x -W -D "cn=ldapadm,dc=jdimedia,dc=local" -f
> test.ldif
> Enter LDAP Password:
> adding new entry "cn=blaat,dc=jdimedia,dc=local"
> ldap_add: Insufficient access
>         additional info: no write access to parent
>
> ldif_record() = 50
>
> ACL's from slapd.conf are :
>
> access to attr=userPassword
>         by self write
>         by anonymous auth
>         by dn="cn=ldapadm,dc=jdimedia,dc=local" write
>         by * none
>
>         access to *
>         by self write
>         by dn="cn=ldapadm,dc=jdimedia,dc=local" write
>         by * read
>
>
> I'm obviously missing somthing here.. Anyone that has an idea what ?
>
>
>
> 	Regards,
>
>
> 		Igmar
>
>