[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: about ACL and err=50



> Did you specify attribut owner in
> entries under ,ou=Roaming,dc=UPCT,dc=es

Yes I did. These are the entries:

------
dn: nsLIProfileName=Enric Jaen, ou=Roaming,  dc=UPCT, dc=es
owner: cn=Enric Jaen, ou=People, dc=UPCT, dc=es
objectclass: dcObject
objectclass: nsLIProfile  

dn:cn=Enric Jaen, ou=People, dc=UPCT, dc=es
cn:Enric Jaen
sn:Jaen
objectclass:dcObject
objectclass:person     
------

 
> if so maybe you should laso add or modify
> your ACL as follows:
> 
> access to dn=".*,ou=Roaming,dc=UPCT,dc=es"
>     by dnattr=owner write
>     by anonymous auth
>     by * read

I tried but I got the following syntax error:

/usr/local/etc/openldap/slapd.conf: line 37: expecting <who> got
"anonymous" 

in this ACL:
 
34  access to dn=".*,ou=Roaming,dc=UPCT,dc=es"
35    by dnattr=owner write
36    by anonymous auth
37    by * read    

I tried also (as suggested by Tero's reply):

36    by * auth 

but I got the the error:
/usr/local/etc/openldap/slapd.conf: line 37: expecting <access> got
"auth"  

                       
What I am missing here? 

(I am using openLDAP-1.2.11 in a RedHat 7.0 Linux box.)


Saludos,

  -Enric