[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: rootdn and sasl-regexp

On Thu, Sep 30, 2004 at 08:58:13AM -0400, Frank Swasey wrote:
> openldap 2.1 is historic, upgrade to 2.2 (party line)

This has been discussed before on a lengthy tread in this mailing list.

> You configured it to translate all SASL entries into a different name.
> So, it is doing exactly what you told it.  It is translating your rootdn
> into something that is no longer the rootdn (simple string compare).
> Yes, this is exactly what I would expect with the configuration you have
> shown.

So, basically the whole "you don't need ACLs for rootdn" is gone when one uses 
SASL authentication for rootdn and sasl-regexp.