[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: What do you use to manage the LDAP and the LDIFs?

I use gq and it works great for me.

In your case, you will want to use
basedn: dc=chilitech,dc=net
binddn: cn=Manager,dc=chilitech,dc=net

I then turn off the ask for password prompt and hard code my password in
with the server config (less secure).  You are specifying a password in
the slapd.conf, right?

You should not need to specify the rootdn in any of your acls.  They are
in essence the root user of your ldap tree, and can do whatever they want.

paul wilson

> I'm currently using a linux based program called "gq" to edit the LDAP
> directory.  However, it doesn't seem to be letting me make changes or
> wite back to the database.  It says insufficient access.    Any ideas?
> Or does anyone have a better solution for a linux based editing program?
> My backend customer program is able to write to the openldap database
> why can't I?  I *think* I'm logging in the same as it does.
> I tried adding this to my slapd.conf file:
> access to *
>         by dn="cn=manager,dc=chilitech,dc=net" write
>         by dn="cn=root,dc=chilitech,dc=net" write
>         by self write
>         by * read
> Still no different...
> So maybe I"m just typing something in wrong in the browser...I know by
> default everyone has read access... what should I have in my browser
> for:
> BaseDN
> -----------
> I've tried:
> dc=chilitech,dc=net
> and
> cn=manager,dc=chilitech,dc=net
> BindDN
> ------------
> I've tried:
> dc=chilitech,dc=net
> and
> cn=manager,dc=chilitech,dc=net
> For reference, my config file for that part looks like this:
> database        ldbm
> suffix          "dc=chilitech,dc=net"
> #suffix         "o=My Organization Name,c=US"
> rootdn          "cn=manager,dc=chilitech,dc=net"
> #rootdn         "cn=Manager,o=My Organization Name,c=US"