[Date Prev][Date Next] [Chronological] [Thread] [Top]

no write access to parent



Hello, I am getting the following error:

Sep 10 03:59:00 zeus slapd[8946]: conn=80 op=1 ADD
dn="CN=JO,OU=TDAVIS,OU=ADDRESSBOOKS,DC=BIRDDOG,DC=COM"
Sep 10 03:59:00 zeus slapd[8946]: conn=80 op=1 RESULT tag=105 err=50 text=no
write access to parent

Here are my acl's:
access to dn="(.*,)?ou=People,dc=birddog,dc=com" attr=userPassword
                by anonymous auth
access to dn="(.*,)?dc=birddog,dc=com"
attr=uid,userPassword,mailLocalAddress,mailRoutingAddress,mailHost,shadowMax,shadowWarning,shadowLastChange,loginShell,uidNumber,gidNumber,homeDirectory,gecos
                by dn="cn=root,dc=birddog,dc=com" write
                by * none
access to dn="(.*,)?ou=tdavis,ou=AddressBooks,dc=birddog,dc=com"
                by dn="uid=td,ou=People,dc=birddog,dc=com" write
                by * none
access to *
                by * read

Do I have to give write access to everything above an object.  Like I want to
give write access to ou=tdavis,ou=AddressBooks,dc=birddog,dc=com by uid=td.  Do
I also have to give him write access to AddressBooks? If so, how do I restrict
him to writing to JUST ou=td,ou=People,dc=birddog,dc=com ?

Thank you,

-- 
Terry Davis
Systems Administrator
BirdDog Solutions, Inc.
(402) 829-6059





-------------------------------------------------
This mail sent through IMP: http://horde.org/imp/