[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
[Fwd: acl dans ldap]
- To: ldap list <openldap-software@OpenLDAP.org>
- Subject: [Fwd: acl dans ldap]
- From: prune <prune@lecentre.net>
- Date: Thu, 29 Mar 2001 10:56:15 +0200
- Organization: Mad Cow Tribe
- User-agent: Mozilla/5.0 (X11; U; Linux 2.2.17-21mdk i686; en-US; m18) Gecko/20010131 Netscape6/6.01
Hi
I think I have an ACL problem
here is my bind dn: uid=prune, ou=users, ou=lecentre.net,
dc=lecentre, dc=net
below I have attributes and another dn like :
dc=lecentre, dc=net
|
ou=lecentre.net
|
ou=users
|
uid=prune--+
|
+-uid=prune_lecentre_net
+-cn=prune
+-userPassword={MD5}fvnekurebviu$ùù
|
|
+-nsLIProfile---+
|
+infos
+infos
+infos
+infos
+--nsLIElement---+
|
+autres_info
+autres_info
+autres_info
+autres_info
here are my actual ACL :
access to *
by self write
by anonymous auth
I'm trying to build a netscape roaming server. Normaly, it should bind
to my first DN, as user prune, using the "userpassword" attribut, I
think.... This bind is working fine
Then, once bound, it have to read/write entries in the tree, especialy
under nsLIElement. This one is not working. here are the logs :
slapd[55321]: conn=330 op=4 SRCH
base="nsLIElementType=liprefs,nsLIProfilename=default,uid=prune,ou=users,ou=lecentre.net,dc=lecentre,dc=net"
scope=0 filter="(objectClass=*)"
slapd[55321]: conn=330 op=4 SEARCH RESULT tag=101 err=0 text=
slapd[55321]: conn=330 op=5 MOD
dn="nsLIElementType=liprefs,nsLIProfilename=default,uid=prune,ou=users,ou=lecentre.net,dc=lecentre,dc=net"
slapd[55321]: conn=330 op=5 RESULT tag=103 err=50 text=
slapd[55321]: conn=-1 fd=9 closed
So, while trying to change things or add things, I have error 50... no
rights
I think the solution is in the answer of the question "how can I do to
have sufficent rights to modify what is under the bind DN ??"
Thanks,
Prune