[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Allowing read only for automount maps

To: Terrence Martin <tmartin@physics.ucsd.edu>
Subject: Re: Allowing read only for automount maps
From: Greg Matthews <gmatt@nerc.ac.uk>
Date: 18 Sep 2003 09:28:09 +0100
Cc: openldap-software@OpenLDAP.org
In-reply-to: <3F68DFB5.3010904@physics.ucsd.edu>
Organization: iTSS
References: <200308282336.h7SNaU0G013813@scv3.apple.com> <3F68DFB5.3010904@physics.ucsd.edu>

look at the log - this is not an acl issue. you need this in slapd.conf:

allow bind_v2 bind_anon_dn


On Wed, 2003-09-17 at 23:27, Terrence Martin wrote:
> I would like to configure my slapd.conf to allow read only for automount 
> maps but maintain my existing permissions for user accounts (in 
> particular authenticated access to the userPassword field).
> 
> Here is the log entry I get when attempting to get autfs on Redhat 9 to 
> get its auto.home from the LDAP server.
> 
> Sep 17 15:23:11 llama slapd[27876]: conn=4 op=2 SRCH attr=ou 
> automountInformation
> Sep 17 15:23:11 llama slapd[27876]: conn=4 op=2 SEARCH RESULT tag=101 
> err=0 nentries=0 text=
> Sep 17 15:23:11 llama slapd[27876]: conn=4 op=3 UNBIND
> Sep 17 15:23:11 llama slapd[27876]: conn=4 fd=13 closed
> Sep 17 15:23:11 llama slapd[27875]: conn=5 fd=13 ACCEPT from 
> IP=132.239.27.243:33321 (IP=0.0.0.0:389)
> Sep 17 15:23:11 llama slapd[27876]: conn=5 op=0 BIND 
> dn="nisMapName=auto.home,dc=physics,dc=ucsd,dc=edu" method=128
> Sep 17 15:23:11 llama slapd[27876]: conn=5 op=0 RESULT tag=97 err=53 
> text=unauthenticated bind (DN with no password) disallowed

notice the dn that autofs is binding with, and no password - this is
bind_anon_dn.

GREG

> 

-- 
Greg Matthews
iTSS Wallingford	01491 692445

References:
- Allowing read only for automount maps
  - From: Terrence Martin <tmartin@physics.ucsd.edu>

Prev by Date: Re: Schema generator
Next by Date: RE: slapd.conf - acl question
Index(es):
- Chronological
- Thread