[Date Prev][Date Next] [Chronological] [Thread] [Top]

Search access does not return any result

To: openldap-technical@openldap.org
Subject: Search access does not return any result
From: sim123 <Sim3159@gmail.com>
Date: Mon, 14 Nov 2011 13:37:26 -0800
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:sender:date:x-google-sender-auth:message-id:subject :from:to:content-type; bh=HXW6HluoHhuaJlfP0rT4oNco3+UmdIji7pZdmhZgPAY=; b=D8B+5HjBfhn8JUlWC8fVbW0jWbAJjJteojH9hKDIhskaJQ+D5bJKTnD1t8J3SPrkGe 45N8tDF/VWYduYxpECsSWG2N6P+MYKhm96J8JZvyclDcI8BFcSIMbfYAVfBs29q9LlMz zwhBeBgSzSlxi3l6/tsfElHSRItSuB+H9ms2s=

Hi All,

I am playing with access controls on openldap 2.4.26, I have a user with search access on everything

access to *

by anonymous auth

by dn="uid=102,ou=system,dc=example,dc=com" search

And when I perform search I get nothing

ldapsearch -H "ldap://testldap:389" -D "uid=102,ou=system,dc=example,dc=com" -b "ou=users,dc=example,dc=com" -x -W '(uid=1)' mail cn dn

Enter LDAP Password:

# extended LDIF

# LDAPv3

# base <ou=users,dc=example,dc=com> with scope subtree

# filter: (uid=1)

# requesting: mail cn dn

# search result

search: 2

result: 0 Success

# numResponses: 1

so I get a success but no value, is it a valid response? I want to control access so that the "uid=102" user can do lookup from given attributes but can not do (objectClass=*) to get a list of every entry in the ldap.

Thanks for the help

Follow-Ups:
- Re: Search access does not return any result
  - From: sim123 <Sim3159@gmail.com>

Prev by Date: Re: trigger script on change to db
Next by Date: Re: Search access does not return any result
Index(es):
- Chronological
- Thread