[Date Prev][Date Next] [Chronological] [Thread] [Top]

Authentication/ACL problem

I'm trying to add authentication to a working LDAP installation -- thanks to those who helped by the way.

Without authentication for read everything works correctly:

access to *
       by dn="cn=admin, dc=myorg, dc=org" write
       by anonymous read

After creating a special user for auth purposes -- ldapuser -- and changing the ACL as follows, I can authenticate successfully but no longer get any results back. It is as though my filtering rule in the LDAP client has changed by virtue of using authentication. I'm getting the same result from different clients. The modified ACL rule I'm using is:

access to *
      by dn="cn=admin,dc=myorg,dc=org" write
      by dn="cn=ldapuser,dc=myorg, dc=org" read
      by users read
      by self write
      by * auth