Fabrice Eudes wrote:
> I tried this but still can't get it to work :-(
>
>> set="[ldap:///ou=personnes,dc=domain??sub?(&(objectClass=iremLillePerson)(groupesTravail=1200))]/entryDN
>> & user" write
> fails
>> set="[ldap:///ou=personnes,dc=domain??sub?(&(objectClass=iremLillePerson)(groupesTravail
Pierangelo Masarati wrote:
> My fault (and a bug in the code): remove the "1.1", leaving the "attrs"
> field of the URI empty.
Leaving the "attrs" field empty should do the trick. In the meanwhile,
a fix is in HEAD (ITS#5384).
p.
Ing. Pierangelo Masarati
OpenLDAP Core Team
SysNet s.r.l.
via
Fabrice Eudes wrote:
> Pierangelo Masarati a écrit :
>> if access depends on values in the "who", use sets; in your case,
>> something like
>>
>> access to dn="cn=foo,ou=groups,dc=example,dc=com"
>> attrs=cn,description,memberUid,entry by
>>
>> set="[ldap:///ou=people,dc=example,dc=com?1.
[EMAIL PROTECTED] wrote:
Hello List,
what settings do i need to write my ldap changes (almost) immedialtely
to disk?
I do not need much of performance but would rather have a higher security.
That is the default behavior for slapd, no other settings are needed.
--
-- Howard Chu
Chief Arch
Hello List,
what settings do i need to write my ldap changes (almost) immedialtely
to disk?
I do not need much of performance but would rather have a higher security.
Thanks, Mario
Hi,
(I've enabled long lines without wrapping)
Pierangelo Masarati a écrit :
if access depends on values in the "who", use sets; in your case,
something like
access to dn="cn=foo,ou=groups,dc=example,dc=com"
attrs=cn,description,memberUid,entry by
set="[ldap:///ou=people,dc=example,
Hi,
thanks for your answer but my chiefs are not in a separate group; the
directory looks like this:
+ dc=example,dc=com
|
--- ou=groups
| |
| --- cn=group_1 (objectClass = posixGroup, members by attribute
"memberUid")
| | ...
| --- cn=group_i
|
--- ou=persons
|
--- uid=person_1 (o
Fabrice Eudes wrote:
Hi all,
I am runing an openldap 2.4.7 on debian with small local schema
modifications: a few more attributes and an objectClass derived from
inetOrgPerson.
I have looked in the administrator's guide and the slapd.access
manpage but I can't figure out how to do the follo
> Hi all,
>
> I am runing an openldap 2.4.7 on debian with small local schema
> modifications: a few more attributes and an objectClass derived from
> inetOrgPerson.
>
> I have looked in the administrator's guide and the slapd.access manpage
> but I can't figure out how to do the following: I want