[Date Prev][Date Next] [Chronological] [Thread] [Top]

ACL Help...

To: openldap-software@OpenLDAP.org
Subject: ACL Help...
From: Nick Couchman <nick@seakr.com>
Date: Fri, 05 Sep 2003 07:10:39 -0600
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.2.1) Gecko/20030225

I'm having a little trouble constructing some useful ACL's.  Here are a
couple things that I need to do.  First, I want to deny access to the
replicator account to everyone except the machines that will need to
replicate the information.  Here's the setup:  I have two ldap servers,
admin1 and admin2.  admin1 is the master, admin2 the slave.  How would I
construct an ACL that would deny everyone except admin1 and admin2 acess
to the replicator account?  The second thing is that I have a specific
host that I want to be able to see all the users in the ldap directory
but not allow them to authenticate.  I'm guessing the best way to do
this is to disallow access from that specific host to the userPassword
attribute.  What is the best way to do this?

Thanks,
Nick

--
You can't make a difference until you are willing to be different!
--
Nick Couchman
SEAKR Engineering, Inc.
6221 South Racine Circle
Centennial, CO 80111

Follow-Ups:
- Re: ACL Help...
  - From: Nick Couchman <nick@seakr.com>

Prev by Date: does 'cn' have to be the same as in 'dn' ?
Next by Date: RE: "children" keyword in the field <what> of an ACL
Index(es):
- Chronological
- Thread