[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Small HOWTO about OpenLDAP2, SASL, Kerberos and SSL/TLS

To: <openldap-software@OpenLDAP.org>
Subject: Re: Small HOWTO about OpenLDAP2, SASL, Kerberos and SSL/TLS
From: Turbo Fredriksson <turbo@bayour.com>
Date: 15 Apr 2001 14:44:17 +0200
In-reply-to: "Leander Janssen"'s message of "Sat, 14 Apr 2001 17:00:14 +0200"
Organization: LDAP/Kerberos expert wannabe
References: <004d01c0c4f3$9c776020$0a00a8c0@SLACO.NET>
User-agent: Gnus/5.0807 (Gnus v5.8.7) Emacs/20.7

Quoting "Leander Janssen" <leander@spectakel.net>:

> I followed the LDAPv3 howto and most of my LDAP/SASL/Kerberos system is
> working now, many thanks for this very helpfull guide.

Thanx, I'm glad it helped someone :)

> When I try to modify or add entries in the ldap directory I get error
> messages.

[...]

> ldap_add: Insufficient access
>         additional info: no write access to parent

Do you have something like this in your ACL (in the right place)?

access to dn=".*,dc=slaco,dc=net"
        by dn="uid=coen.+\+realm=SLACO.NET" write

> Now I think this is a problem with the ACL (used the one from Turbo's
> howto).

Most likley. As said, I just barely got it working, and the ACL I included
is most likley faulty

-- 
 Turbo     __ _     Debian GNU     Unix _IS_ user friendly - it's just 
 ^^^^^    / /(_)_ __  _   ___  __  selective about who its friends are 
         / / | | '_ \| | | \ \/ /   Debian Certified Linux Developer  
  _ /// / /__| | | | | |_| |>  <  Turbo Fredriksson   turbo@tripnet.se
  \\\/  \____/_|_| |_|\__,_/_/\_\ Stockholm/Sweden

Follow-Ups:
- Re: Small HOWTO about OpenLDAP2, SASL, Kerberos and SSL/TLS
  - From: "Leander Janssen" <leander@spectakel.net>

References:
- Re: Small HOWTO about OpenLDAP2, SASL, Kerberos and SSL/TLS
  - From: "Leander Janssen" <leander@spectakel.net>

Prev by Date: Re: hi
Next by Date: Re: Small HOWTO about OpenLDAP2, SASL, Kerberos and SSL/TLS
Index(es):
- Chronological
- Thread