[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ACL configuration in openldap 1.2.11



sorry, yeah.. I had changed that too.

Patrick Timmons <ptimmons@courriel.polymtl.ca> said:

> again, it's attrs not attr.
> Currious I didn't see the anonymous. Normaly it's coded as 'by * auth' or I
think 'by dn=".*" auth' is equivalent but not shure.
> 
> Joseph Hoot wrote:
> > 
> > the logs were complaining about "by anonymous."  I commented that out and
it
> > runs.  However, my user can't change the password with the following:
> > 
> >  ldappasswd -t uid=jhoot,ou=people,dc=nowcom,dc=com -H md5
> > 
> > with the below access rules, my user jhoot should be able to change his
> > password right?
> > 
> > Joseph Hoot <joe@networkpenguin.com> said:
> > 
> > > I am trying to get acl stuff working in 1.2.11 and have entered a simple
acl
> > > in my /etc/openldap/slapd.conf.  Here it is:
> > >
> > > # access control list stuff
> > > defaultaccess read
> > > access to attr=userPassword
> > >        by self write
> > >        by anonymous auth
> > >        by dn="cn=Admin,dc=nowcom,dc=com" write
> > >
> > > when I restart slapd with /etc/rc.d/init.d/ldap restart  it starts and
dies
> > > immediately.  Any thoughts on why its dieing?
> > >
> > > --
> > > Joseph Hoot
> > > System Administrator
> > > http://www.networkpenguin.com
> > > joe@networkpenguin.com
> > >
> > >
> > >
> > 
> > --
> > Joseph Hoot
> > System Administrator
> > http://www.networkpenguin.com
> > joe@networkpenguin.com
> 
> -- 
> Patrick Timmons, service informatique
> 



-- 
Joseph Hoot
System Administrator
http://www.networkpenguin.com
joe@networkpenguin.com