[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
(ITS#7300) ACLs
Full_Name: Andre Cardinal
Version: 2.4.30
OS: Red Hat 5
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (206.47.249.246)
I have the following ACL set up in slapd.conf
access to dn.base=""
by * read
access to attrs=GCSRAAllow,GCSRAGroup,GCSRASubjectdn,userpassword
by dn="cn=ProvAdmin,ou=GCSRAAdmin,o=gc,c=ca" write
by dn="cn=gateAdmin1,ou=GCSRAAdmin,o=gc,c=ca" read
by dn="cn=gateAdmin2,ou=GCSRAAdmin,o=gc,c=ca" read
slapacl -f /usr/local/etc/openldap/slapd.conf -D
cn=provadmin,ou=gcsraadmin,o=gc,c=ca -b ou=gcsrausers,o=gc,c=ca gcsraallow
authcDN: "cn=provadmin,ou=gcsraadmin,o=gc,c=ca"
GCSRAAllow: write(=wrscxd)
However any modify I try returns:
modifying entry "GCSRASubjectDN=my636-test,ou=GCSRAUsers,o=gc,c=ca"
ldap_modify: Insufficient access (50)