31 May
2014
31 May
'14
12:43 a.m.
Hello Dominik,
On 29.05.2014 20:14, Dominik George wrote:
# slapacl -v -b cn=nslcd,dc=teckids,dc=org entry/read read access to entry: DENIED
For me this looks like a bug, but maybe I am doing somwthing entirely wrong?
Look close: Read access to "entry" denied.
The ACLs you posted don't allow access to the "entry" pseudo attribute: ====8<====8<====8<====8<==== There are two special pseudo attributes "entry" and "children". To read (and hence return) a target entry, the subject must have read access to the target's "entry" attribute. [...] The complete examples at the end of this section should help clear things up. ====8<====8<====8<====8<==== http://www.openldap.org/doc/admin24/access-control.html
kind regards,
Christian Marg
--
Christian Marg Hotline : 05323/72-2626
Rechenzentrum TU Clausthal Fon : 05323/72-4883
D-38678 Clausthal-Zellerfeld Mobil : 05323/72-914883
http://www.tu-clausthal.de Fax : 05323/72-994883