[Date Prev][Date Next] [Chronological] [Thread] [Top]

Acl problem "no write access to parent"

To: openldap-software@openldap.org
Subject: Acl problem "no write access to parent"
From: "Muzammel Asghar" <muzammel.linux@gmail.com>
Date: Fri, 31 Oct 2008 01:30:18 +0600
Content-disposition: inline

Hi guys i need an acl like that

access to dn.subtree="ou=Company_People,dc=company,dc=com"
        attrs=cn,member
        by dn="uid=testadmin,ou=People,dc=company,dc=com" write
        by dn="uid=admin,ou=People,dc=company,dc=com" write
        by users read
        by * none

It works fine for me that uid=testadmin has only rights on two
attributs cn,member under "ou=Company_People,dc=company,dc=com" But i
need one more right to that uid=testadmin to create new cn (group)
under this "ou=Company_People,dc=company,dc=com"

when i try to add new cn under  "ou=Company_People,dc=company,dc=com"
by using this uid=testadmin it gives me following error

ldapadd: Insufficient access (50)
        additional info: no write access to paren

Please help me regarding this matter

Thanks

Prev by Date: Re: DDS object does not expire?
Next by Date: Upgrading 2.3.35 to 2.4.11 - best approach?
Index(es):
- Chronological
- Thread