[Date Prev][Date Next]
Someone had said these many times, take note:
# example will NOT work:
# allow bind_v2
# allow bind_anon_dn
# The second entry (bind_anon_dn) overrides the first
# one (bind_v2) since they are in separate lines.
# The line below WILL work.
allow bind_v2 bind_anon_dn
From: owner-openldap-software@OpenLDAP.org on behalf of Craig White
Sent: Sat 1/1/2005 4:26 AM
To: Quanah Gibson-Mount
Subject: Re: confusion...
On Fri, 2004-12-31 at 12:12 -0800, Quanah Gibson-Mount wrote:
> --On Friday, December 31, 2004 11:45 AM -0800 Quanah Gibson-Mount
> <email@example.com> wrote:
> >> 2- Unauthenticated bind (DN with no password) disallowed - I gather that
> >> is something that I got away with the RHEL/2.0.27 Is this a padl
> >> software issue with my configuration?
> >> From slapd.conf:
> Err, from the manpage on slapd.conf. ;)
> > allow <features>
yeah - man slapd.conf still brings up the man page for 2.0.27
I worked that through for the moment but I am seeing postfix error...
Dec 31 13:08:59 srv1 postfix/cleanup: warning: dict_ldap_connect:
Unable to bind to server srv1.tobyhouse.com as : 2 (Protocol error)
Dec 31 13:08:59 srv1 postfix/cleanup: fatal: opening
Dec 31 13:09:00 srv1 postfix/master: warning:
process /usr/libexec/postfix/cleanup pid 7356 exit status 1
so I added both...
allow bind_v2 #postfix needed this I think
allow bind_anon_dn #this may not be necessary