[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: simple acl

To: "Mario Ohnewald" <mario.Ohnewald@gmx.de>
Subject: Re: simple acl
From: "Pierangelo Masarati" <ando@sys-net.it>
Date: Wed, 23 Jun 2004 15:24:33 +0200 (CEST)
Cc: openldap-software@OpenLDAP.org
Importance: Normal
In-reply-to: <27604.1087993221@www45.gmx.net>
References: <27604.1087993221@www45.gmx.net>
User-agent: SquirrelMail/1.4.3a-1

> Hello!
> I would like to set up a acl which allows a anonymous user write access.
>
> If my sldap.conf has no acl, i can read it just fine.
>
> If i add something silly like:
> ---
> access	to *
> by anonymous write
> by * write

try leaving at least a blank as first char on continuation lines.
moreover, by default slapd denies write to unauthenticated users despite
the acls you use. look thru slapd.conf(5) man page (or the admin guide),
there should be some flag to tell slapd to do something so unusual.  I
don't remember how to do it, and I don't want to learn.

ciao, p.

> ---
> then  i cant even read it as anonymous. Where is my mistake?
>
> (...)Each access level is incremental in interpretation and implies all
> previous access levels. For example,  search implies compare and auth
> access, whereas write implies complete access. (...)
>
>
> Cheers, Mario
>
> p.s. i am using
> http://sapiens.wustl.edu/~sysmain/info/openldap/openldap_configure_acl.html
> as a tutorial.
>
> --
> "Sie haben neue Mails!" - Die GMX Toolbar informiert Sie beim Surfen!
> Jetzt aktivieren unter http://www.gmx.net/info
>
>


-- 
Pierangelo Masarati
mailto:pierangelo.masarati@sys-net.it


    SysNet - via Dossi,8 27100 Pavia Tel: +390382573859 Fax: +390382476497

Follow-Ups:
- Re: simple acl
  - From: "Mario Ohnewald" <mario.Ohnewald@gmx.de>

References:
- simple acl
  - From: "Mario Ohnewald" <mario.Ohnewald@gmx.de>

Prev by Date: Things are clearer now; slapd is running
Next by Date: Re: Manage own LDAP Address book entry
Index(es):
- Chronological
- Thread