[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Access Control Lists

To: Thomas Campbell <openldap@evasive.com>
Subject: Re: Access Control Lists
From: Buchan Milne <bgmilne@obsidian.co.za>
Date: Mon, 13 Dec 2004 10:35:38 +0200
Cc: openldap-software@OpenLDAP.org
In-reply-to: <200412130639.iBD6dZoU007245@ns1.evasive.com>
References: <200412130639.iBD6dZoU007245@ns1.evasive.com>
User-agent: Mozilla Thunderbird 1.0 (X11/20041207)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Thomas Campbell wrote:
| Hiya,
|
|
|
| I?m having a heck of a time trying to get my ACL?s to work properly.
|
|
|
| My goal is to be logged in as ?root? and then ?id tc? (tc is my personal
| user).
|
|
|
| Here is my ACL?s:
|
|
|
| access to attr=userPassword
|
|    by self write
|
|    by anonymous auth
|
|    by * none
|
|
|
| access to *
|
|    by self write
|
|    by users read
|
|    by * none
|
|
|
| With this ACL if I type in ?id tc? then I get back:
|
|
|
| ksh# id tc
|
| id: tc: No such user
|
|

Then, assuming you are using nss_ldap, your nss_ldap is not binding
successfully ...

If you can search the correct attributes with ldapsearch, then this is
not an openldap question, but an nss_ldap question.

Regards,
Buchan

- --
Buchan Milne                      Senior Support Technician
Obsidian Systems                  http://www.obsidian.co.za
B.Eng                                RHCE (803004789010797)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFBvVRarJK6UGDSBKcRAjrDAJ0bYwl89BKJn5gkYs/XdAhxyjppCACgrK6t
RnMZLi/PBc+9Reh7Xr0dbrw=
=HGcO
-----END PGP SIGNATURE-----

References:
- Access Control Lists
  - From: "Thomas Campbell" <openldap@evasive.com>

Prev by Date: RE: Ldap modify error !
Next by Date: windows client TLS connection failed
Index(es):
- Chronological
- Thread