[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ACL problem in slapd.conf

To: Lepoutre Lionel <leplio@gmail.com>
Subject: Re: ACL problem in slapd.conf
From: Tomasz Chmielewski <mangoo@wpkg.org>
Date: Fri, 04 Sep 2009 13:36:40 +0200
Cc: openldap-software@openldap.org
In-reply-to: <7da67d4c0909040434k595a20a8jbd3f4ae818e02928@mail.gmail.com>
References: <4AA0E5C6.7000700@wpkg.org> <7da67d4c0909040434k595a20a8jbd3f4ae818e02928@mail.gmail.com>
User-agent: Thunderbird 2.0.0.23 (X11/20090830)

Lepoutre Lionel wrote:

Have you put your "access" block AFTER your database declaration?

ex:
database hdb
suffix ....
rootdn ...

access to...


Because I have already had this error due to a bad delete/past in my conf.

I have three entries now; with the second entry, I'm able to editeverything in "ou=Users..." with uid=Operator:



access to attrs=userPassword,sambaLMPassword,sambaNTPassword
    by self write
    by dn="uid=replica,ou=Users,dc=example,dc=com" write
    by anonymous auth
    by * none

access to dn.subtree="ou=Users,dc=example,dc=com"
    by dn="uid=Operator,ou=Users,dc=example,dc=com" write

access to *
    by dn="uid=replica,ou=Users,dc=example,dc=com" write
    by * read

However, with this entry, the system is not able to list the users inLDAP...



--
Tomasz Chmielewski
http://wpkg.org

References:
- ACL problem in slapd.conf
  - From: Tomasz Chmielewski <mangoo@wpkg.org>
- Re: ACL problem in slapd.conf
  - From: Lepoutre Lionel <leplio@gmail.com>

Prev by Date: Re: ACL problem in slapd.conf
Next by Date: Re: ACL problem in slapd.conf
Index(es):
- Chronological
- Thread