Im having a look at using the new olcAccess system rather than using slapd.conf for ACLs, and while the documentation of olcAccess is fantastic, how to implement it is not so easily found. Any help and pointers on how to get started with olcAccess would be greatly appreciated, as i just want to add a set of ACLs to my LDAP with this.
William
--On Wednesday, May 19, 2010 8:41 PM +0930 Indexer indexer@internode.on.net wrote:
Im having a look at using the new olcAccess system rather than using slapd.conf for ACLs, and while the documentation of olcAccess is fantastic, how to implement it is not so easily found. Any help and pointers on how to get started with olcAccess would be greatly appreciated, as i just want to add a set of ACLs to my LDAP with this.
ldapmodify?
--Quanah
--
Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc -------------------- Zimbra :: the leader in open source messaging and collaboration
On 20/05/2010, at 6:16 AM, Quanah Gibson-Mount wrote:
--On Wednesday, May 19, 2010 8:41 PM +0930 Indexer indexer@internode.on.net wrote:
Im having a look at using the new olcAccess system rather than using slapd.conf for ACLs, and while the documentation of olcAccess is fantastic, how to implement it is not so easily found. Any help and pointers on how to get started with olcAccess would be greatly appreciated, as i just want to add a set of ACLs to my LDAP with this.
ldapmodify?
Yes i know i am supposed to be using ldapmodify but what object am i supposed to be modifying? Just any random user object i want, or is there a set of configs in the tree that i am supposed to modify and put this into.
--Quanah
--
Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc
Zimbra :: the leader in open source messaging and collaboration
--On Thursday, May 20, 2010 11:10 AM +0930 Indexer indexer@internode.on.net wrote:
On 20/05/2010, at 6:16 AM, Quanah Gibson-Mount wrote:
--On Wednesday, May 19, 2010 8:41 PM +0930 Indexer indexer@internode.on.net wrote:
Im having a look at using the new olcAccess system rather than using slapd.conf for ACLs, and while the documentation of olcAccess is fantastic, how to implement it is not so easily found. Any help and pointers on how to get started with olcAccess would be greatly appreciated, as i just want to add a set of ACLs to my LDAP with this.
ldapmodify?
Yes i know i am supposed to be using ldapmodify but what object am i supposed to be modifying? Just any random user object i want, or is there a set of configs in the tree that i am supposed to modify and put this into.
cn=config is the configuration database.
You might want to take an existing slapd.conf and convert it (using the slaptest binary) to see how it looks.
--Quanah
--
Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc -------------------- Zimbra :: the leader in open source messaging and collaboration
On 20/05/2010, at 6:16 AM, Quanah Gibson-Mount wrote:
--On Wednesday, May 19, 2010 8:41 PM +0930 Indexer indexer@internode.on.net wrote:
Im having a look at using the new olcAccess system rather than using slapd.conf for ACLs, and while the documentation of olcAccess is fantastic, how to implement it is not so easily found. Any help and pointers on how to get started with olcAccess would be greatly appreciated, as i just want to add a set of ACLs to my LDAP with this.
ldapmodify?
Yes i know i am supposed to be using ldapmodify but what object am i supposed to be modifying? Just any random user object i want, or is there a set of configs in the tree that i am supposed to modify and put this into.
dn: cn=config
for global ACLs,
dn: olcDatabase={<idx>}<type>,cn=config
for per-database ACLs.
p.
--Quanah
--
Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc
Zimbra :: the leader in open source messaging and collaboration
openldap-technical@openldap.org
-
Indexer -
masaratiļ¼ aero.polimi.it -
Quanah Gibson-Mount