Hello, Is it possible to combine olcAccess "by who" condition for DN and IP address, that both conditions must by true? Something like: to dn.subtree="ou=test,dc=domain,dc=com" by dn="uid=someuser,ou=users,dc=domain,dc=com" & peername.ip=10.10.10.10 read So, it should be possible to read the subtree for the user only from the specific IP address. I tried also use "set=(...)" but without success. Any chance to do that?
It is already noted in the slapd.access(5) man page that you can have multiple requirements in the WHO clause. I.e., what you're asking for is already implemented.
Try by dn.exact="..." peername.ip=xxx read --Quanah -- Quanah Gibson-Mount Platform Architect Zimbra, Inc. -------------------- Zimbra :: the leader in open source messaging and collaboration