[Date Prev][Date Next] [Chronological] [Thread] [Top]

Insufficient access error when adding entries



Hi, I'm new to ldap and i'm trying to populate my ldap database.
Here is how my configuration:

include		/etc/openldap/schema/core.schema
include		/etc/openldap/schema/cosine.schema
include		/etc/openldap/schema/inetorgperson.schema

# Define global ACLs to disable default read access.



# Do not enable referrals until AFTER you have a working directory
# service AND an understanding of referrals.
#referral	ldap://root.openldap.org

pidfile		/var/run/slapd.pid
argsfile	/var/run/slapd.args

# Load dynamic backend modules:
# modulepath	/usr/lib/openldap/openldap
# moduleload	back_ldap.la
# moduleload	back_ldbm.la
# moduleload	back_passwd.la
# moduleload	back_shell.la

#######################################################################
# ldbm database definitions
#######################################################################

database	ldbm
suffix		"dc=netsystemsinfo,dc=com"
rootdn		"cn=Manager,dc=netsystemsinfo,dc=com"

# Cleartext passwords, especially for the rootdn, should
# be avoid.  See slappasswd(8) and slapd.conf(5) for details.
# Use of strong authentication encouraged.
rootpw  	{SSHA}YvVuC47X6Q4RQWs0zqV9uFOjIFxZCurN
# The database directory MUST exist prior to running slapd AND
# should only be accessible by the slapd/tools. Mode 700 recommended.
directory	/var/lib/ldap
# Indices to maintain
index	objectClass	eq

# database access control definitions
access to attr=userpassword
    by self write
    by anonymous auth
    by dn="cn=safran,dc=netsystemsinfo,dc=com" write
    by * none
access to *
    by self write
    by dn="cn=safran,dc=netsystemsinfo,dc=com" write
    by users read

^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
when adding an entry I use the following file:

cuzco:/home/backup/office52/user/work/Documents/ldap # more netsys.ldif
dn: dc=netsystemsinfo,dc=com
objectclass: dcObject
objectclass: organization
o: NetSystems Info Inc.
dc: NetSystems

The command that I use 
 
cuzco:/home/backup/ldap # ldapadd -v  -f netsys.ldif -W -x
ldap_initialize( <DEFAULT> )
Enter LDAP Password:
add objectclass:
        dcObject
        organization
add o:
        NetSystems Info Inc.
add dc:
        NetSystems
adding new entry "dc=netsystemsinfo,dc=com"
ldap_add: Insufficient access

ldif_record() = 50


Any help will be welcome

Thank you 


Victor