[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Insufficient access error when adding entries
Hi, I'm new to ldap and i'm trying to populate my ldap database.
Here is how my configuration:
include /etc/openldap/schema/core.schema
include /etc/openldap/schema/cosine.schema
include /etc/openldap/schema/inetorgperson.schema
# Define global ACLs to disable default read access.
# Do not enable referrals until AFTER you have a working directory
# service AND an understanding of referrals.
#referral ldap://root.openldap.org
pidfile /var/run/slapd.pid
argsfile /var/run/slapd.args
# Load dynamic backend modules:
# modulepath /usr/lib/openldap/openldap
# moduleload back_ldap.la
# moduleload back_ldbm.la
# moduleload back_passwd.la
# moduleload back_shell.la
#######################################################################
# ldbm database definitions
#######################################################################
database ldbm
suffix "dc=netsystemsinfo,dc=com"
rootdn "cn=Manager,dc=netsystemsinfo,dc=com"
# Cleartext passwords, especially for the rootdn, should
# be avoid. See slappasswd(8) and slapd.conf(5) for details.
# Use of strong authentication encouraged.
rootpw {SSHA}YvVuC47X6Q4RQWs0zqV9uFOjIFxZCurN
# The database directory MUST exist prior to running slapd AND
# should only be accessible by the slapd/tools. Mode 700 recommended.
directory /var/lib/ldap
# Indices to maintain
index objectClass eq
# database access control definitions
access to attr=userpassword
by self write
by anonymous auth
by dn="cn=safran,dc=netsystemsinfo,dc=com" write
by * none
access to *
by self write
by dn="cn=safran,dc=netsystemsinfo,dc=com" write
by users read
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
when adding an entry I use the following file:
cuzco:/home/backup/office52/user/work/Documents/ldap # more netsys.ldif
dn: dc=netsystemsinfo,dc=com
objectclass: dcObject
objectclass: organization
o: NetSystems Info Inc.
dc: NetSystems
The command that I use
cuzco:/home/backup/ldap # ldapadd -v -f netsys.ldif -W -x
ldap_initialize( <DEFAULT> )
Enter LDAP Password:
add objectclass:
dcObject
organization
add o:
NetSystems Info Inc.
add dc:
NetSystems
adding new entry "dc=netsystemsinfo,dc=com"
ldap_add: Insufficient access
ldif_record() = 50
Any help will be welcome
Thank you
Victor