[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: Access-problem : warning: no by clause(s) specified in access l ine
On 19 Jun, Harry Rüter wrote:
> Hi,
>
> i'm having a little problem with my access lines.
>
> Here's the output of my logfile :
>
> -------snipp-------
> /etc/openldap/slapd.access:
> line 10: warning: no by clause(s) specified in access line
> -------snipp-------
>
I had the same error when I tried to comment out a 'by' line. You can't,
you need to remove the line entirely (or move it in between clauses.
> Here's the beginnnig of my access-file
> /etc/openldap/slapd.access, starting with line 1 :
> (if mail is wrapped, line 10 begins with "by * none"
> in the first acces-definition)
>
> -------snipp-------
> ################################################
> ### Definition der Access Control List (ACL) ###
>
> ### Netscape-roaming
>
> access to
> dn=nsliProfileName=(.*),ou=roaming,ou=accounts,ou=mynetwork,o=myorganization,dc=hrnet,dc=de"
> by dn="uid=admin,ou=ldap,o=myorganization,dc=hrnet,dc=de"
> write
> by dn="uid=ldapadmin.+\+realm=HRNET.DE" write
> by dnattr=owner write
> by * none
>
Why is the 'write' on a separate line?
> access to
> dn="nsLIElementType=(.*),nsliProfileName=(.*),ou=roaming,ou=accounts,ou=mynetwork,o=myorganization,dc=hrnet,dc=de"
> by dn="uid=admin,ou=ldap,o=myorganization,dc=hrnet,dc=de"
> write
> by dn="uid=ldapadmin.+\+realm=HRNET.DE" write
> by dnattr=owner write
> by * none
>
> access to dn="nsliProfileName=(.*)"
> by dn="uid=admin,ou=ldap,o=myorganization,dc=hrnet,dc=de"
> write
> by dn="uid=ldapadmin.+\+realm=HRNET.DE" write
> -------snipp-------
>
>
> I've investigated an amount of time,
> but i couldn't find an error.
>
>
> Any hints ?
>
> greets Harry
HTH,
Marcel
--
---------------------------------------------------------------
ing. Marcel van Dorp (CCDP, CCNP+security) http://www.wiwo.nl
WiWo Support tel. 071-523 77 91
Postbus 1098 fax 071-523 77 94
2340 BB Oegstgeest gsm 0653-50 77 76
---------------------------------------------------------------