On 02. aug. 2016 14:45, John Lewis wrote:
On 08/02/2016 08:29 AM, John Lewis wrote:
On 08/02/2016 08:17 AM, Hallvard Breien Furuseth wrote:
(...) Set the global directive olcAuthzRegexp (in cn=config) aka authz-regexp (in slapd.conf) to "^gidNumber=0[+]uidNumber=0,cn=peercred,cn=external$" "cn=Manager,dc=example,dc=com"
(...) failed to modify olcDatabase={1}mdb,cn=config - LDAP error 65 LDAP_OBJECT_CLASS_VIOLATION - <attribute 'olcAuthzRegexp' not allowed> <>
*Global* directive. Set it on the "cn=config" entry. I should have added, maybe olcAuthzRegexp is already set, in which case you can add to it. You can't map the same DN to several different DNs, but you can map different DNs to various DNs - same or different.