hide namingcontexts

22 Nov 2013


      I am trying to lock down an openldap server (2.4.23). Using the FAQ I
have limited the user entries with:
{1)to attrs=userPassword by self =xw by anonymous auth
{2)to * by users read
However, I cannot figure out how to match the namingContexts attribute
with olcaccess to also prevent unauthenticated users from listing the
directories served. I have tried many variations of the following based
on search results:
to attrs=namingContexts by * none
to dn.exact="" attrs=namingContexts by * none
to dn.base="" attrs=namingContexts val/distinguishedNameMatch="dc=mydomain,dc=com" by * none
Can anyone help?
Thanks

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

hide namingcontexts