[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Granting write to ou

To: "Thomas D. Dahlmann" <domingo@domingo.dk>
Subject: Re: Granting write to ou
From: Troy Knabe <knabe@4j.lane.edu>
Date: Tue, 4 Jan 2011 13:02:44 -0800
Cc: openldap-technical@openldap.org
In-reply-to: <4D238A48.3000805@domingo.dk>
References: <4D12014A.90709@domingo.dk> <20101222203220.6ca88783@rubin.avci.de> <4D238A48.3000805@domingo.dk>

You are trying to modify cn=config, not dc=example,dc=net, which is where your account is the admin.


On Jan 4, 2011, at 12:59 PM, Thomas D. Dahlmann wrote:

> 
>> something like:
>> ldapmodify -D "cn=config" -W -H ldap://some.host
>> dn:olcDatabase={1}hdb,cn=config
>> changetype: modify
>> replace: olcAccess
>> olcAccess: {1} to dn.subtree="ou=addressbook,dc=example,dc=net" by
>>  users write by * read
> Gives me this:
> ldapmodify -D "cn=admin,dc=example,dc=net" -W -H ldap://localhost
> Enter LDAP Password:
> dn:olcDatabase={1}hdb,cn=config
> changetype: modify
> replace: olcAccess
> olcAccess: to dn.subtree="ou=addressbook,dc=example,dc=net" by users write by * read
> 
> modifying entry "olcDatabase={1}hdb,cn=config"
> ldap_modify: Insufficient access (50)
> 
> "cn=admin,dc=example,dc=net" is my root account so I don't see why it shouldn't have access??
> 
> /Thomas

Follow-Ups:
- Re: Granting write to ou
  - From: "Thomas D. Dahlmann" <domingo@domingo.dk>

References:
- Re: Granting write to ou
  - From: "Thomas D. Dahlmann" <domingo@domingo.dk>

Prev by Date: Re: Granting write to ou
Next by Date: Re: Granting write to ou
Index(es):
- Chronological
- Thread