[Date Prev][Date Next] [Chronological] [Thread] [Top]

(ITS#4035) rootdn incorrect in cn=config backend/database

To: openldap-its@OpenLDAP.org
Subject: (ITS#4035) rootdn incorrect in cn=config backend/database
From: andreas@conectiva.com.br
Date: Mon, 19 Sep 2005 21:53:19 GMT

Full_Name: Andreas Hasenack
Version: OPENLDAP_REL_ENG_2_3
OS: linux 2.6
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (200.140.247.99)


I can't write to cn=config even when authenticated as the rootdn for that
backend. 

slapd -d 128 shows:
slapd starting
=> access_allowed: search access to "olcDatabase={1}bdb,cn=config" "objectClass"
requested
<= root access granted
(...)
=> access_allowed: read access to "olcDatabase={1}bdb,cn=config" "olcDbShmKey"
requested
<= root access granted
=> access_allowed: backend default write access denied to
"uid=andreas,cn=digest-md5,cn=auth"

I put a breakpoint in be_isroot() and this is what I get:
(gdb) p op->o_bd->be_rootdn
$5 = {bv_len = 9, bv_val = 0x81bf700 "cn=config"}

slapd.conf has:
(...)
database config
rootdn "uid=andreas,cn=digest-md5,cn=auth"

database        bdb
suffix          "o=company,c=br"
rootdn          "cn=Manager,o=company,c=br"
rootpw          password
(...)

All my ACL directives are under the "database bdb" definition and have
"dn.subtree="o=company,c=br"".

Prev by Date: (ITS#4034) LdapResultSet fails with multi-value attributes
Next by Date: Re: (ITS#4035) rootdn incorrect in cn=config backend/database
Index(es):
- Chronological
- Thread