From nata.cs2@gmail.com Fri Feb 11 12:56:19 2011 From: Natalia To: openldap-technical@openldap.org Subject: ACL peername Date: Fri, 11 Feb 2011 13:55:29 +0100 Message-ID: MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="===============8271335526828634470==" --===============8271335526828634470== Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit Hi, i have a problem with ACLs. I will to grant access to IP. my ACL: olcAccess: to dn.subtree="ou=people,dc=example,dc=de" by group.exact="cn=lda,ou=Endsysteme,dc=example,dc=de" write by group.exact="cn=kon,ou=Endsysteme,dc=example,dc=de" read by peername.ip=127.0.0.1 read by * none But i become error: ldap_modify: Other (e.g., implementation specific) error (80) additional info: handler exited with 1 in logs: conn=1034 op=4 MOD attr=olcAccess olcAccess Feb 11 13:33:07 ldap slapd2.4[21279]: slapd: line 0: expecting got "writeby". Feb 11 13:33:07 ldap slapd2.4[21279]: ::= access to [ by [ ] [ ] ]+ ::= * | dn[.=] [filter=] [attrs=] ::= [val[/][.]=] | ::= [ , ] ::= | @ | ! | entry | children ::= [ * | anonymous | users | self | dn[.]= ] [ realanonymous | realusers | realself | realdn[.]= ] [dnattr=] [realdnattr=] [group[/[/]][.