[Date Prev][Date Next] [Chronological] [Thread] [Top]

Solution Found!

  I found the solution for that.
I had set rootdn to "o=mydomain.cim"
And all users dn had the format like 
Dn: "ou=unit1, o=mydomain.com" 
Dn: "ou=unit2, o=mydomain.com"  and so on.

So actually, 

   access to *
          by dn="o=mydomain.com" write

Was giving access to all the users associated with entry whose dn
"contained" the relative dn "o=mydomain.com". 

I now changed rootdn to "id=SuperUser, o=mydomain.com" and also 
Access to *
       by dn="id=SuperUser, o=mydomain.com" write
       by self write
       by * auth

And it met my expected results.



Information contained in this E-MAIL being proprietary to Wipro Limited is 
'privileged' and 'confidential' and intended for use only by the individual
 or entity to which it is addressed. You are notified that any use, copying 
or dissemination of the information contained in the E-MAIL in any manner 
whatsoever is strictly prohibited.