[Freeipa-devel] [PATCH] 0524 Add managed read permission to config

Petr Viktorin pviktori at redhat.com
Tue Apr 15 08:37:34 UTC 2014

On 04/15/2014 09:53 AM, Martin Kosek wrote:
> On 04/14/2014 10:00 PM, Petr Viktorin wrote:
>> Read access is given to all authenticated users.
> This only works when I added  cn and objectclass attributes to the ACI. Is this
> expected?
> It would work when we add nsContainer ACI for cn=etc though as it has the
> nsContainer objectlass.

You're right, cn and objectclass should be granted explicitly. My mistake.
Fixed patch attached.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: freeipa-pviktori-0524.2-Add-managed-read-permission-to-config.patch
Type: text/x-patch
Size: 1922 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20140415/c4617df6/attachment.bin>

More information about the Freeipa-devel mailing list