Should be enough....
access to attribute=userPassword by dn="cn=amministratore,dc=campana,dc=vi,dc=it" write by anonymous auth by self write by * none
access to dn.base="" by * read
access to * by dn="cn=amministratore,dc=campana,dc=vi,dc=it" write by * read
access to dn.subtree="ou=Ottavio,ou=Rubriche,dc=campana,dc=vi,dc=it" by dn="uid=bott,ou=Users,dc=campana,dc=vi,dc=it" write by * none
maybe is the third rule that isn't hidden by the last one?
-- Non c'è più forza nella normalità, c'è solo monotonia.
Attachment:
signature.asc
Description: OpenPGP digital signature