[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: [ldap] Permsion on Parent

At 09:14 PM 3/13/2003, Ace Suares wrote:
>> Is there any docs that shows all this?
>I proposed a seperate ACL mailinglist

I don't see the value of a separate list.  And, in particular,
I don't see this list being overwhelmed with ACL discussions.

>and also to write extensive docs on this.

Feel free.  Note that FAQ is interactive.  It's a good place
to prepare ideas before submitting material for the Admin
Guide.  How to submit materials for the Admin Guide is detailed
in the FAQ as well.  And, of course, you're free to produce
materials for independent publication as well.

>I haven't heard from anyone, especially not from the developers.

You should not expect developers, or anyone for that matter, to
respond to any particular post (or to any posts).  Just like you,
each developer choose what posts he/she reads and what, if
anything, to post.

>In good anarchistic fashion, should I just start this project without approval from the list members !?

Why do you ask?  To ask for approval would imply that you actually
needed or desired approval to do it, and that wouldn't be terribly anarchistic.

>> Robert Canary wrote:
>> > I am trying create a record under ou=People,dc=example,dc=com
>> >
>> > I am using the dn"uid=newuser2add,ou=People,dc=example,dc=com
>> >
>> > If I run the ldif file with cn=root it gose fine, but I don'r want
>> > that.  I am trying to setup a user specificly for adding new people.  So
>> > I set a user called "peopleroot" and added this superuser in the acls as
>> > follows:
>> >
>> > access to dn="uid=*,ou=People,dc=example,dc=com"
>> >         by dn="cn=peopleroot,dc=example,dc=com" write
>> >
>> > But it still gives me:
>> > ldap_add: Insuffiecent access
>> > additional Info: nowrite access to parent
>> > ldif_record()=50
>> >
>> > Can someone tell me what the proper dn for peopleroot should be to allow
>> > write permissions
>> >
>> > thanks in advance
>> > --
>> > robert
>> >
>> > ---
>> > You are currently subscribed to ldap@umich.edu as:
>> > [phantom@ohiocounty.net] To unsubscribe send email to
>> > ldap-request@umich.edu with the word UNSUBSCRIBE as the SUBJECT of the
>> > message.