[Date Prev][Date Next] [Chronological] [Thread] [Top]

Access control

To: openldap-software@OpenLDAP.org
Subject: Access control
From: Reid Miller <reidm@dpsi4.org>
Date: Wed, 20 Jun 2001 12:18:47 -0700 (PDT)

Greetings,

I have been running into a problem try to access my LDAP server from
machines other than the actual host which has the server, or for that
matter on the host, but accessing thru TCP/TP (ie with pine's LDAP
Directory access). I figured out how to get it to answer over TCP/IP in
addition to IPC, but now I always run into the following logged error:

Jun 20 12:02:29 caladan slapd[3645]: fd=10 host access from unknown
(63.192.150.154) denied.

How can I permit access to the server from hosts within my subnet (for
starters)? I have added an "access" by the domain name, but it does not
seem to even get a reverse DNS resolution in the log file (if it's
supposed to work this way). Is there something that I am missing?

I can telnet localhost:ldap, and I do see that it's accepting that
connection just fine in the logs.

I've taken the following steps to make sure nothing is blocking.

1. /etc/hosts.allow: Opened this service to ALL hosts for now.
2. Made sure my port scanner is not blocking this port, and I don;t see a
bind error from slapd that it's unable to bind to the port.

Any info would be greatly appreciated.

-- 
Reid

=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Personal Web Page: http://dpsi4.org/~reidm

Follow-Ups:
- Re: Access control
  - From: Turbo Fredriksson <turbo@bayour.com>

Prev by Date: ldif for users
Next by Date: Importing LDAP structures from Control Data Systems GDS software
Index(es):
- Chronological
- Thread