[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: Question with creating user accounts(What am I doing wrong?)



Title: RE: Question with creating user accounts(What am I doing wrong?)

Of course there are a million ways to do this. Here is an easy one that you probably won't end up using. Replace your ACL with the following:

access to * by * read

For more info see the Admin Guide http://www.openldap.org/doc/admin/slapdconfig.html#Access%20Control

-----Original Message-----
From: Sundar Narayanasamy [mailto:linux@esaravana.com]
Sent: Tuesday, February 05, 2002 9:41 AM
To: Chapman, Kyle; openldap-software@OpenLDAP.org
Subject: Re: Question with creating user accounts(What am I doing
wrong?)


Could you tell me how would I do that?

Thanks,
Sundar

Chapman, Kyle wrote:

> the dn you are trying to use doesnt have read, based on the ACL you
> sent...  give read to that dn and see what happens
>
> -----Original Message-----
> From: Sundar Narayanasamy [ mailto:linux@esaravana.com ]
> Sent: Monday, February 04, 2002 5:26 PM
> To: openldap-software@OpenLDAP.org
> Subject: Question with creating user accounts(What am I doing wrong?)
>
>
> Hello,
>
> I trying to configure my LDAP server to get accessed
>
> # create an account
> dn: cn=sunny bunny, ou=individual1,ou=addressbook,dc=MyDomain dc=com
> objectClass: top
> [ ... and so on ..]
> uid: sunny
> userPassword: crypted
>
> then I have group account as
> dn: cn=Administrator, dc=MyDomain dc=com
> objectClass: groupOfNames
> member:
> member: cn=sunny bunny, ou=individual1,ou=addressbook,dc=MyDomain dc=com
> and so on..
>
> then once these accounts have been added to ldap then I put the
> following line
>
> access to * by dn="cn=Administrator, dc=MyDomain, dc=com" read
>
>
> The problem is , when I try browse LDAP with UserDN
> cn=sunny bunny, ou=individual1,ou=addressbook,dc=MyDomain, dc=com
> I get [ERROR] Insufficient Access
>
>
> Any help is appreciated.
>
> Sundar
>