[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Anonymous Bind ACL Problems

To: Dark Morford <darkmorford+ldap@gmail.com>, openldap-technical@openldap.org
Subject: Re: Anonymous Bind ACL Problems
From: Quanah Gibson-Mount <quanah@zimbra.com>
Date: Fri, 05 Apr 2013 13:11:04 -0700
Content-disposition: inline
In-reply-to: <CAKDLC8k2zCzTXUhP=Q87mqVZBdCcjY4EuZud05w=rANtGX-M9Q@mail.gmail.com>
References: <CAKDLC8k2zCzTXUhP=Q87mqVZBdCcjY4EuZud05w=rANtGX-M9Q@mail.gmail.com>

--On Friday, April 05, 2013 12:46 PM -0700 Dark Morford<darkmorford+ldap@gmail.com> wrote:

I'm setting up my first LDAP server; just using it as an auth provider
for Apache until I'm more comfortable with things. I was able to get it
up and running with a few user entries, but I can't get anonymous
searching to work the way I want.

It's configured (cn=config) style, and the ACLs are:
{0}to attrs=uid by anonymous read by users read
{1}to attrs=userPassword by anonymous auth by self write
{2}to * by users read


access to entry by * read needs to be in there too before {2}.

--Quanah

--

Quanah Gibson-Mount
Sr. Member of Technical Staff
Zimbra, Inc
A Division of VMware, Inc.
--------------------
Zimbra ::  the leader in open source messaging and collaboration

References:
- Anonymous Bind ACL Problems
  - From: Dark Morford <darkmorford+ldap@gmail.com>

Prev by Date: Anonymous Bind ACL Problems
Next by Date: back-perl not working with cn=config
Index(es):
- Chronological
- Thread