[Date Prev][Date Next] [Chronological] [Thread] [Top]

ACL confusion

To: <openldap-software@OpenLDAP.org>
Subject: ACL confusion
From: "Bennett Samowich" <brs@ben-tech.com>
Date: Mon, 12 Feb 2001 14:43:55 -0500
Importance: Normal

Greetings,

I am trying to set ACL's on my first real directory, however, they don't
seem to be working.  Basically before I set the ACL I can query the
directory for everything that I need to (PAM, Auth_LDAP, search, etc.)  but
when I add the ACL everything seems to break.  Rather than post my "mess"
which has changed numerous times in numerous attempts to get it right, I
thought that it would be better to post a sample entry and requirements...


Entry has:
cn
uid
uidnumber
userpassword
mail
account

Need to have:
unauthenticated users get only cn and mail
system can search for uid, uidnumber, account (e.g. PAM, Auth_LDAP)
Authenticated users can only change thier password


Once I see how ACLs are supposed to be assembled I should be able to make it
fit our application (which is still developing, hence the reason for not
posting actual data).

Thanks in advance,
- Bennett

Prev by Date: Como
Next by Date: Re: enable-perl problems
Index(es):
- Chronological
- Thread