[Date Prev][Date Next]
Re: acl based sizelimit directive
Quanah Gibson-Mount wrote:
Small differences; in 2.2 the following should be equivalent to what you
Quoting Mark Hendricks <Mark.Hendricks@humboldt.edu>:
I am running openldap-220.127.116.11.
I have used the sizelimit directive to limit the number of returns.
I like this feature and want to keep it, however I have some
users/applications that need to access the entire directory.
I would like to give them read only access to the entire directory with
I have seen posts indicating that it is possible to do this but no
This is the 2.2 version for a group. Note that 2.1 doesn't support group
limits group="cn=ldapadmin,cn=applications,dc=stanford,dc=edu" time.soft=-1
time.hard=-1 size.soft=- 1 size.hard=-1
This is the 2.2 version for an exact dn (user). It may be slightly
different for 2.1.
time.soft=-1 time.hard=-1 size.soft=-1 size.hard=-1
i.e. the keyword "unlimited" is favored over -1 because only legal numerical values should be supplied, and whether "unlimited" is internally mapped to -1 or to any other value is implementation dependent and might change over time. If the limit is non qualified (i.e. no "soft" or "hard" specification) it applies to both. I think this is he same for 2.1, but I didn't check.
SysNet - via Dossi,8 27100 Pavia Tel: +390382573859 Fax: +390382476497