[Date Prev][Date Next] [Chronological] [Thread] [Top]

An ACL question


I understand the general rule for ordering ACLs, but the application still sometimes throws me.

In my people hierarchy, I need several attributes to be visible to anonymous connections: uid and mail.  Here's my original set of ACLs:

access to dn.
    by anonymous auth

access to dn.
    by dn="cn=Postfix,ou=Special Users,o=linfield.edu" read
    by group/linfieldGroupOfUniqueNames/uniqueMember="cn=ferpa administrators,ou=People,o=linfield.edu" read
    by self read

access to dn.
    by self write

I have added the following ACL in every conceivable location (the top, the bottom, and the two in-betweens) and I still can't access the fields anonymously:

access to dn.
    by * read

What am I doing wrong here?


Rob Tanner
UNIX Services Manager
Linfield College, McMinnville OR

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature