Hi there.
I have a linux system with openldap.
I have created a database in openldap using the
following contents in a ldif file.
If I try to modify the password of any user, using
the corresponding user entry, I get an insuficiente modify access
message.
I am also using openldao and pam_ldap in the lgon
script. I can login with root but not with the user teste.
It gets an insuficient credentials
message.
Can anyone help me?
Thanks
==========================================================================
dc=example,dc=com
objectclass=dcObject objectclass=organization dc=example o=Example Corporation description=The Example Corporation aci=(target ="ldap:///dc=example,dc=com")(targetattr ="*")(version 3.0;acl "Anonymous full access";allow (all)(userdn = "ldap:///anyone");) cn=Manager,dc=example,dc=com
objectclass=organizationalRole cn=Manager description=Directory Manager ou=People,dc=example,dc=com
objectclass=top objectclass=organizationalUnit ou=People aci=(target ="ldap:///ou=People,dc=example,dc=com")(targetattr ="userpassword || telephonenumber || facsimiletelephonenumber || jpegphoto")(version 3.0;acl "Allow self entry modification";allow (write)(userdn = "ldap:///self");) uid=root,ou=People,dc=example,dc=com
uid=root cn=root objectclass=account objectclass=posixAccount objectclass=top objectclass=shadowAccount userpassword={crypt}$1$nabAV4lb$SJh2DqY8HGLSmWnlj7/OX/ shadowlastchange=11573 shadowmax=99999 shadowwarning=7 loginshell=/bin/bash uidnumber=0 gidnumber=0 homedirectory=/root gecos=root uid=teste,ou=People,dc=example,dc=com
uid=teste cn=teste user objectclass=account objectclass=posixAccount objectclass=top objectclass=shadowAccount userpassword={crypt}$1$nabAV4lb$SJh2DqY8HGLSmWnlj7/OX/ shadowlastchange=11573 shadowmax=99999 shadowwarning=7 loginshell=/bin/bash uidnumber=500 gidnumber=500 homedirectory=/home/teste gecos=teste ==========================================================================
Rafael Torres ( rafael.torres@infopulse.pt
)
Infopulse Portugal Pr. dos Poveiros, 56, 2º 4000 393 Porto - Portugal Tel.: + 351 223 389 103 Fax.: +351 223 389 104 Mobile: +351 918 604 112 ICQ: 86290812 |