[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: strong bind with back-ldap



Hello,

Pierangelo Masarati <ando@sys-net.it> writes:

> Dieter Kluenter wrote:
>> Hi,

>> | acl-bind
>> |         bindmethod=sasl
>> |         saslmech=digest-md5
>> |         authcId=admanager
>> |         credentials=xxx
>> | #idassert-authzFrom dn.regex:cn=(.*),ou=(*)?dc=dkluenter,dc=de
>> | idassert-bind
>> |         bindmethod=sasl
>> |         saslmech=digest-md5
>> |         authzId=u:admanager

I got it properly working in the end.
acl-bind rules as above

idassert-bind
        bindmethod=sasl
        saslmech=digest-md5
        authcId=admanager
        credentials=xxx
        mode=self

the manual page slapd-ldap is not quite clear about mode parameters, so
I was relying on default, thats why I configured authzId=u:admanager.

-Dieter

-- 
Dieter Klünter | Systemberatung
http://www.dkluenter.de
GPG Key ID:8EF7B6C6