Re: Further work on LDAP passwords (working on an ldap-adduser).
On Mon, Jun 14, 1999 at 12:18:05PM -0500, Rob Browning wrote:
>
> When I installed openldapd, it set up the admin user with a password,
> and in /etc/openldapd/slapd.conf I can see that that user's allowed to
> do anything:
>
> access to * by dn="cn=admin, ou=People, dc=localnet" write
>
Yea, this one stumped me for quite a while to. From section 5.3 of the
Slapd administrators guide:
NOTE: The DN pattern specified should be "normalized", meaning that there should be no
extra spaces, and commas should be used to separate components. An example normalized DN
is "cn=Babs Jensen,o=University of Michigan,c=US". An example of a non-normalized DN is
"cn =Babs Jensen; o=University of Michigan, c=US".
So you need to get rid of the spaces in your access line. i.e.:
access to * by dn="cn=admin,ou=People,dc=localnet" write
I'll go ahead and report this to the openldap maintainer.
--Bill Van Devender
Reply to: