Naveen.X1.Sarabu@chase.com wrote:
access to * by self write # by users read by group.exact="cn=Admin,ou=LdapAdmin,dc=example,dc=com" write by * read # by anonymous auth
The above does not yield what you probably expect. In fact, the comment in the line "by users read" ends the access rule, and the following "by group..." is treated by garbage (depending on the age of the software you're using, you might get some complaints or warnings if you increase the log level). Please read slapd.conf(5) to understand its syntax. As a consequence of your syntax error, users cannot authenticate, hence the failure.
p.
Ing. Pierangelo Masarati OpenLDAP Core Team
SysNet s.r.l. via Dossi, 8 - 27100 Pavia - ITALIA http://www.sys-net.it ----------------------------------- Office: +39 02 23998309 Mobile: +39 333 4963172 Fax: +39 0382 476497 Email: ando@sys-net.it -----------------------------------