Re: (ITS#6834) Conversion to cn=config needs more detail

17 Feb 2011


      On Wed, Feb 16, 2011 at 03:44:28PM -0800, Howard Chu wrote:
...
...
It would also be useful to copy the config database clause from
slapd-config(5) into the example in the Admin Guide:
          # set a rootpw for the config database so we can bind.
          # deny access to everyone else.
          dn: olcDatabase=config,cn=config
          objectClass: olcDatabaseConfig
          olcDatabase: config
          olcRootPW: {SSHA}XKYnrjvGT3wZFQrDD5040US592LxsdLy
          olcAccess: to * by * none

That ACL is already the default. In an isolated example there's no
need to specify it. (It is present in the slapd-config(5) example to
ensure that it takes precedence over the olcFrontendConfig ACLs
immediately above it.)
I was suggesting the inclusion of this entry mainly because of the
olcRootPW, but as it would go into the config example in section 5.3 at
about line 20, surely the ACL should be present for the same reason that
it is in the manpage example?
Andrew
-- 
-----------------------------------------------------------------------
|                 From Andrew Findlay, Skills 1st Ltd                 |
| Consultant in large-scale systems, networks, and directory services |
|     http://www.skills-1st.co.uk/                +44 1628 782565     |
-----------------------------------------------------------------------

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

Re: (ITS#6834) Conversion to cn=config needs more detail