Still fighting openldap
m.roth2006 at rcn.com
m.roth2006 at rcn.com
Tue Feb 19 20:36:46 UTC 2008
Jim,
>Date: Tue, 19 Feb 2008 12:11:10 -0600
>From: "Jim Canfield" <jcanfield at tshmail.com>
>m.roth2006 at rcn.com wrote:
>> Following myself up...
>>> Date: Tue, 19 Feb 2008 12:12:13 -0500 (EST)
>>> From: <m.roth2006 at rcn.com>
<snip>
>Try this:
>
>access to dn.base=""
> by self write
> by * auth
>
>access to attr=userPassword
> by self write
> by * auth
>
>access to attr=shadowLastChange
> by self write
> by * read
>
>access to *
> by * read
> by anonymous auth
No joy. Also, it bitched at me when I restarted slapd, saying that attr was deprecated and undocumented, and that I should use attrs, which I did. I also tried putting in dn.base="ou=People,dc=example,dc=com". Still a 49 (invalid credentials), and that's after I did an ldapmodify to reset my password to an absolutely known value that I tested by logging onto another box.
mark
More information about the redhat-list
mailing list