[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: trouble with access control



Am Donnerstag, 13. April 2006 17:13 schrieb Lise Didillon:
> At 08:39 13/04/06 +0200, Dr. Harry Knitter wrote:
> >Hello,
> >
> >I am new with Openldap and with this list, too.
> >
> >My problem is as follows:
> >
> >I have set up an openldap server with simple bind.
> >
> >Everything works fine when using rootdn to acess my data.
> >There are several addressbooks in different dns.
> >
> >My access controls are:
> >access to *
> >         by * read
> >
> >access to dn.subtree="dc=mydoamin,dc=tld"
> >         by dn="uid=harry,cn=users,ou=ldapconfig,dc=mydomain,dc=tld" write
> >         by * none
> 
> write instead:
> 
> access to dn.subtree="dc=mydoamin,dc=tld"
>          by dn="uid=harry,cn=users,ou=ldapconfig,dc=mydomain,dc=tld" write
>          by * none
> 
> access to *
>          by * read
> 
> because slapd finds and stops at the first rule that matches the entry,
> 


When I do this I get no access at all.

Harry