[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: An accesslist problem OpenLDAP 1.2.3



At 01:13 PM 7/28/99 +0200, Frank Matthieß wrote:
>With the OpenLDAP v1.2.3 i have a accesslist problem. My slapd.conf contains:
>---schnipp---
>access to attr=userpassword
>  by self write
>  by dn="cn=admin, ou=person, dc=decor-metall, dc=de" write
>  by * compare
>
>access to dn="cn=*, ou=device, dc=decor-metall, dc=de"
>  by self write
>  by dn="cn=inventaradmin, ou=person, dc=decor-metall, dc=de" write
>  by dn="cn=inventardb, ou=person, dc=decor-metall, dc=de" read

The form is dn=<regex> where the regex is used to match
against the normalized DN.  Try:

access to attr=userpassword
  by self write
  by dn="cn=admin,ou=person,dc=decor-metall,dc=de" write
  by * compare

access to dn="cn=.*,ou=device,dc=decor-metall,dc=de"
  by self write
  by dn="cn=inventaradmin,ou=person,dc=decor-metall,dc=de" write
  by dn="cn=inventardb,ou=person,dc=decor-metall,dc=de" read

(note the replacement of "*" with ".*" and removal of spaces
after the RDN separators).

Kurt