On 31-03-14 12:52, Hallvard Breien Furuseth wrote:
On Mon, 2014-03-31 at 10:43 +0200, Jonas Kellens wrote:
> Well actually, this is the entire ACL :
> defaultaccess none
The defaultaccess keyword disappeared in OpenLDAP 2.1, and 2.4 won't
start with it. Unless you're using a hacked version of OpenLDAP.
Anyway, that's the default in RE24 for a database which has other
access statements. And searching also needs "search" access to
search-related items, like the baseDN. See man slapd.access.
So you get what you're specifying: No access to baseDN of your
search. Append something like this to access list:
access to * by * search
won't this statement give access to everything and everyone ? Because if
it does, this is not what I want.