Ok as it is always, I was able to find the solution with some luck shortly after posting this message.
The error "this base cannot be created with pla" doesnt provide any meaningful information nor any google results and the debug of slapd is the uttermost useless. After endless hours of try&error I found out, the olcAccess directive wasnt correct for the group-membership of some individuals. Here is the olcAccess rule, how to give full access to members of a specific group: to * set="[cn=sysops,ou=groups,dc=example,dc=com]/memberUid & user/uid" write after that, login with know suffix and ldap search filter and bind-user works like a charm. Am 05.09.2016 19:11, schrieb Robert Menger: > Hello, > > days after googleing im stuck. I would like members of certain group to > be able to login to LAM and manage everyting. > > They are part of ou=users like everybody else, and they are memberUid of > cn=special,ou=groups > > olcAccess is set to groupOfNames="cn=special,ou=groups..." write > > > But still, after login in to LAM there is nothing "this base cannot be > created with pla" > > Any hints what Im doing wrong here? (ubuntu with OpenLDAP) > > > regards > Robert > > ------------------------------------------------------------------------------ > _______________________________________________ > Lam-public mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/lam-public > ------------------------------------------------------------------------------ _______________________________________________ Lam-public mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/lam-public
