[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Problems with 2.0.11

To: openldap-software@OpenLDAP.org
Subject: Re: Problems with 2.0.11
From: Patrick von der Hagen <hagen@ira.uka.de>
Date: Fri, 13 Jul 2001 19:31:33 +0200
Content-disposition: inline
In-reply-to: <20010713091634.E16733@mrball.net>
User-agent: Mutt/1.3.18i

On Fri, Jul 13, 2001 at 09:16:34AM -0700, Todd Lyons wrote:
[...]
> Without knowing the command that you're using, it's just a guess, but
> you are not using any DN to bind for the directory search.
You are right, I don't use a DN and a don't want to. The
adress-information is not really critcal but on the other hand I don't
want to spread it outside my institute. So instead of giving thousand
people passwords and accounts I just want to authenticate by our domain.
I want to allow everyone from ira.uka.de, but no one else.

My config is:

defaultaccess none
access to dn="(.*,)?ou=Mail,dc=ira,dc=uka,dc=de" by domain=i09pc1.\.atis\.uni-karlsruhe\.de read

access to * by domain=irams1\.ira\.uka\.de read
	by domain=localhost read
	by domain=irams1 read
	by domain=i09pc1*\.atis\.uni-karlsruhe\.de read
				
but those hosts fail to access it. They work however, if I set
defaultaccess to read.

Surprisingly, the same config works on the master but fails on the
slave. The master is 2.0.11 on debian-linux, the slave is 2.0.11 on
Solaris 8.

-- 
CU,
   Patrick.

Follow-Ups:
- Re: Problems with 2.0.11
  - From: Todd Lyons <todd@mrball.net>

References:
- Re: Problems with 2.0.11
  - From: Todd Lyons <todd@mrball.net>

Prev by Date: db2ldif error
Next by Date: pam ldap
Index(es):
- Chronological
- Thread