[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: SASL EXTERNAL olcRootDN and ACLs

To: openldap-technical@openldap.org
Subject: Re: SASL EXTERNAL olcRootDN and ACLs
From: linux nuse <nuse.linux@yandex.com>
Date: Fri, 28 Sep 2018 03:06:11 +0300
Authentication-results: smtp1j.mail.yandex.net; dkim=pass header.i=@yandex.com
Content-language: en-US
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yandex.com; s=mail; t=1538093172; bh=F3X6vc0Lh22sPTDXBpITl6uwHZwsTTmQu3zgpuNnOJA=; h=Subject:To:References:From:Message-ID:Date:In-Reply-To; b=BR/gvmZyuNOKZoI4ZxUf6ejspBPkdm8nUjacyO3SmxSsDweVcmCf+JcDZdhzWBPfW gaca0wl3xXq4Wzfvrz5ByjubwmXFQq7FALmRB9zzCLpF1uHAV4OCrN5s5zcJbAl1gx vANPUs+TDe2ebpTkbic/MI/JtbzyivIOmOxJ3ljk=
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yandex.com; s=mail; t=1538093171; bh=F3X6vc0Lh22sPTDXBpITl6uwHZwsTTmQu3zgpuNnOJA=; h=Subject:To:References:From:Message-ID:Date:In-Reply-To; b=UH11LveO35ygkhAPp86tXR0j0UmkYc0BoCwuK6g1BxES75n6/s9h9lMCJbQoccq6+ 2O6iMq8+vHAfj0PLcCAPaiDhKm50yMVQJLzWOqycZTpb+hMbUs3sqVTkEurg+GaBQd UaAuE5Ez27ySVNXC5EuoRmj0EWzUp7RWMEUW0Tak=
In-reply-to: <07da0f39-9fac-6aa2-2a5b-d43513a72149@yandex.com>
References: <07da0f39-9fac-6aa2-2a5b-d43513a72149@yandex.com>

On 27/09/18 01:41, linux nuse wrote:

Is it expected that gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth rootdn does not have full rights without explicit permission or I need to recheck because I could get something wrong (didn't restart slapd or something like that)?


Ofc I did it wrong. olcRootDN was set to `gidNumber=0+uidNumber=0,cn=peercred,cn=external` (`,cn=auth` was missing). I think I've messed up with copypasting.

Now it works.

References:
- SASL EXTERNAL olcRootDN and ACLs
  - From: linux nuse <nuse.linux@yandex.com>

Prev by Date: Re: SASL EXTERNAL olcRootDN and ACLs
Next by Date: Re: issues with equality matching and slapd death
Index(es):
- Chronological
- Thread