[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Further work on LDAP passwords (working on an ldap-adduser).

On Mon, Jun 14, 1999 at 12:18:05PM -0500, Rob Browning wrote:
> 
> When I installed openldapd, it set up the admin user with a password,
> and in /etc/openldapd/slapd.conf I can see that that user's allowed to
> do anything:
> 
>  access to * by dn="cn=admin, ou=People, dc=localnet" write
> 

Yea, this one stumped me for quite a while to. From section 5.3 of the
Slapd administrators guide:
   NOTE: The DN pattern specified should be "normalized", meaning that there should be no
   extra spaces, and commas should be used to separate components. An example normalized DN
   is "cn=Babs Jensen,o=University of Michigan,c=US". An example of a non-normalized DN is
   "cn =Babs Jensen; o=University of Michigan, c=US".

So you need to get rid of the spaces in your access line. i.e.:

access to * by dn="cn=admin,ou=People,dc=localnet" write


I'll go ahead and report this to the openldap maintainer.


--Bill Van Devender
Reply to: