[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: search request not blocked by ACLs

To: Manuela Mandache <manuela3mandache@gmail.com>, openldap-technical@openldap.org
Subject: Re: search request not blocked by ACLs
From: Quanah Gibson-Mount <quanah@symas.com>
Date: Wed, 04 Sep 2019 07:00:54 -0700
Content-disposition: inline
In-reply-to: <CANN-7tUr_UUModmT5rwH1tKjmOfCRiE-_okx_=Xp14OEH+oCQw@mail.gmail.com>
References: <CANN-7tUr_UUModmT5rwH1tKjmOfCRiE-_okx_=Xp14OEH+oCQw@mail.gmail.com>

--On Wednesday, September 4, 2019 1:56 PM +0200 Manuela Mandache<manuela3mandache@gmail.com> wrote:

olcAccess: {0}to * by dn.base="cn=admin,cn=config" manage by
dn.base="cn=adm
 in,dc=example,dc=com" manage by * break
olcAccess: {1}to dn.base="" by * read
olcAccess: {2}to dn.base=cn=Subschema by * read
olcAccess: {3}to dn.subtree="dc=example,dc=com" attrs=userPassword by *
auth
olcAccess: {4}to dn.subtree="dc=example,dc=com" attrs=entry by * read
olcAccess: {5}to dn.subtree="dc=example,dc=com" attrs=cn,mail by * read
olcAccess: {6}to * by anonymous none by * read


On what cn=config entry have you set these ACLs?

--Quanah


--

Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>

References:
- search request not blocked by ACLs
  - From: Manuela Mandache <manuela3mandache@gmail.com>

Prev by Date: search request not blocked by ACLs
Next by Date: slapd-sock as overlay
Index(es):
- Chronological
- Thread