[Date Prev][Date Next] [Chronological] [Thread] [Top]

limiting access

To: openldap-general@OpenLDAP.org
Subject: limiting access
From: "Wim.Holemans" <holemans@uia.ua.ac.be>
Date: Fri, 24 Sep 1999 17:22:31 +0200 (MET DST)

we have a ldap server with the following requirements : access only from a
limited set of hosts and entries in the form uid=A can only be read by
binding as uid=A with the exact password.
I know how to do both this separate :

access to dn=".*,o=UIA,c=BE"
	by self read
        by addr="143\.169\.254\.*" read
        by * none

but how do i combine these options ? i tried removing the self line and
adding by addr=   selfread   but this didn't work.

The above line is translated by the daemon into :
ACL: access to dn=.*,O=UIA,C=BE
        by addr=143.169.254.*
        by dn=.*

ACL: access to dn=.*
        by dn=.*



Thanks,

-----------------------------------------------------------------------
Wim Holemans                            phone + 32 3 820 22 03
Network/System manager                  fax   + 32 3 820 22 44
U.I.A.                         e-mail : wim.holemans@uia.ua.ac.be
University of Antwerp Belgium  http://www.uia.ua.ac.be/u/holemans
-----------------------------------------------------------------------

Follow-Ups:
- Re: limiting access
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>

Prev by Date: Re: XML?
Next by Date: Re: limiting access
Index(es):
- Chronological
- Thread