[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: OpenLDAP ACL causing error code 49

To: Michael Ströder <michael@stroeder.com>, Matty <matty91@gmail.com>, openldap-technical@openldap.org
Subject: Re: OpenLDAP ACL causing error code 49
From: Quanah Gibson-Mount <quanah@symas.com>
Date: Mon, 21 Nov 2016 09:45:29 -0800
Content-disposition: inline
In-reply-to: <WM!b3d673fa4a35847ff5fe44dc78e1e274ba84a46d3185cb5c76a78610548df194b8796b4fce0e64f276b8b9126998341b!@mailstronghold-3.zmailcloud.com>
References: <CALCK1CHAtxxBjAoRXh-AZa8PYJU=7-QgRnj_Lezv3oYNTobnQQ@mail.gmail.com> <69bb768d-f41e-505b-50ea-5326656c654c@stroeder.com> <WM!b3d673fa4a35847ff5fe44dc78e1e274ba84a46d3185cb5c76a78610548df194b8796b4fce0e64f276b8b9126998341b!@mailstronghold-3.zmailcloud.com>

--On Monday, November 21, 2016 6:41 PM +0100 Michael Ströder<michael@stroeder.com> wrote:

Matty wrote:

I am testing some OpenLDAP ACLs and stumbled on a weird issue. My
configuration has the following ACL defined:

access to *
  by users read
  by peername.ip=1.2.3.4 read
  by * none

         ^^^^
You probably want "auth" in this last <who> clause.

Ciao, Michael.


or:
by anonymous auth
by * none

may be closer.

--Quanah

--

Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>

References:
- OpenLDAP ACL causing error code 49
  - From: Matty <matty91@gmail.com>
- Re: OpenLDAP ACL causing error code 49
  - From: Michael Ströder <michael@stroeder.com>

Prev by Date: Re: OpenLDAP ACL causing error code 49
Next by Date: Re: Re: Can't add "same" mail attribute with different cases.
Index(es):
- Chronological
- Thread