Am Tue, 04 Jan 2011 21:59:52 +0100
schrieb "Thomas D. Dahlmann" <domingo(a)domingo.dk>:
> something like:
> ldapmodify -D "cn=config" -W -H ldap://some.host
> dn:olcDatabase={1}hdb,cn=config
> changetype: modify
> replace: olcAccess
> olcAccess: {1} to dn.subtree="ou=addressbook,dc=example,dc=net" by
> users write by * read
Gives me this:
ldapmodify -D "cn=admin,dc=example,dc=net" -W -H ldap://localhost
Enter LDAP Password:
dn:olcDatabase={1}hdb,cn=config
changetype: modify
replace: olcAccess
olcAccess: to dn.subtree="ou=addressbook,dc=example,dc=net" by users
write by * read
modifying entry "olcDatabase={1}hdb,cn=config"
ldap_modify: Insufficient access (50)
"cn=admin,dc=example,dc=net" is my root account so I don't see why it
shouldn't have access??
cn=config has its own rootdn, olcDatabase={0}cn=config, if not
configured, it should be cn=config
-Dieter
--
Dieter Klünter | Systemberatung
http://dkluenter.de
GPG Key ID:DA147B05
53°37'09,95"N
10°08'02,42"E