Hi, <[EMAIL PROTECTED]> writes:
> Hi > > im trying to get an openldap server (2.3.) running with acl restricting > access to special attributes > > tb_READ should be allowed to search in the ou people but must not read any > attributes then telephoneNumber, cn, sn, uid... > > so i added this access rule to my slapd.conf : > > access to dn.subtree="ou=people,dc=example,dc=com" > attrs=telephoneNumber,cn,sn,mail,roomNumber,uid,givenName > by dn="cn=tb_READ,ou=functional,dc=example,dc=com" read > after restarting slapd I checked the result of ldapsearch but it returns > nothing debug level 128 (ACL) may give some hints. -Dieter -- Dieter Klünter | Systemberatung http://www.dkluenter.de GPG Key ID:8EF7B6C6
