[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ldap access

To: "Douglas B. Jones" <douglas@gpc.edu>, openldap-software@OpenLDAP.org
Subject: Re: ldap access
From: Quanah Gibson-Mount <quanah@stanford.edu>
Date: Fri, 23 Jan 2004 12:29:23 -0800
Content-disposition: inline
In-reply-to: <PHEKJLKKDLGCAEJLJPHMMEBICDAA.douglas@gpc.edu>
References: <PHEKJLKKDLGCAEJLJPHMMEBICDAA.douglas@gpc.edu>

--On Friday, January 23, 2004 3:01 PM -0500 "Douglas B. Jones" <douglas@gpc.edu> wrote:

access  to attr=userPassword
        by anonymous auth
        by users auth

by * break


access  to attrs=entry,uid,sn,mail,ou,cn,givenname
        by users read
        by anonymous read

by * break


access to *
        by dn="uid=douglas,dc=employee,dc=gpc,dc=edu" write

You might try this. Right now, you are saying that douglas has write to everything but the first two things you already defined acl's for. If that doesn't work, add the by dn="uid=douglas,dc=employee,dc=gpc,dc=edu" write to the previous to ACL's as well.

--Quanah


--
Quanah Gibson-Mount
Principal Software Developer
ITSS/TSS/Computing Systems
ITSS/TSS/Infrastructure Operations
Stanford University
GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html

Follow-Ups:
- RE: ldap access
  - From: "Douglas B. Jones" <douglas@gpc.edu>

References:
- ldap access
  - From: "Douglas B. Jones" <douglas@gpc.edu>

Prev by Date: ldap access
Next by Date: Re: turning off clear text communications
Index(es):
- Chronological
- Thread