[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: binding needs access to userpassword by * compare?

To: Joeri van Ruth <Joeri.van.Ruth@dds-projects.nl>
Subject: Re: binding needs access to userpassword by * compare?
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Date: Thu, 12 Oct 2000 12:04:22 -0700
Cc: openldap-software@OpenLDAP.org
In-reply-to: <20001012174018.A12015@murray.dz.kantoor.dds.nl>

At 05:40 PM 10/12/00 +0200, Joeri van Ruth wrote:
>Hi,
>
>I am using openldap 2.04.
>
>My first access rule reads:
>
>        access to attribute=userPassword
>                by self write
>                by * compare
>
>If I change this to
>
>        access to attribute=userPassword
>                by self write
>                by * none
>
>I get
>
>        ldap_bind: Insufficient access
>
>Why?  The FAQ-o-Matic seems to suggests that by * none should work.

The FAQ has not been updated for 2.0.

2.0 requires you grant "auth" access to attributes needed for
authentication and authorization purposes.  See the 2.0 admin
guide...

References:
- binding needs access to userpassword by * compare?
  - From: Joeri van Ruth <Joeri.van.Ruth@dds-projects.nl>

Prev by Date: RE: referrals, do they work in 1.2.11
Next by Date: Re: AIX memory problems
Index(es):
- Chronological
- Thread