Re: How do I allow root to edit mdb database? [SOLVED]

John Lewis wrote: > How is this? > > olcAccess: {0}to * by > dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth manage > by * break > olcAccess: {1}to dn.base="" by * read > olcAccess: {2}to attrs=userPassword,shadowLastChange by self write by > anonymous auth by * none >

Re: How do I allow root to edit mdb database? [SOLVED]

On 08/05/2016 09:08 AM, Frank Swasey wrote: > Today at 8:10am, John Lewis wrote: > >> olcAccess: {0}to * by >> dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth manage >> by * break >> olcAccess: {1}to dn.base="" by * read >> olcAccess: {2}to * by * read >> olcAccess: {3}to

Re: How do I allow root to edit mdb database? [SOLVED]

Today at 8:10am, John Lewis wrote: olcAccess: {0}to * by dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth manage by * break olcAccess: {1}to dn.base="" by * read olcAccess: {2}to * by * read olcAccess: {3}to attrs=userPassword,shadowLastChange by self write by anonymous auth by

Re: How do I allow root to edit mdb database? [SOLVED]

On 08/05/2016 07:42 AM, John Lewis wrote: > On 08/02/2016 11:43 AM, Ryan Tandy wrote: >> On Tue, Aug 02, 2016 at 12:37:58AM -0400, John Lewis wrote: >>> How do I allow root aka >>> dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external to edit >>> olcDatabase={1}mdb,cn=config. >> Besides

Re: How do I allow root to edit mdb database?

On 08/02/2016 11:43 AM, Ryan Tandy wrote: > On Tue, Aug 02, 2016 at 12:37:58AM -0400, John Lewis wrote: >> How do I allow root aka >> dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external to edit >> olcDatabase={1}mdb,cn=config. > > Besides olcAuthRegex mentioned by other posters, setting up an

Re: How do I allow root to edit mdb database?

On Tue, Aug 02, 2016 at 12:37:58AM -0400, John Lewis wrote: How do I allow root aka dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external to edit olcDatabase={1}mdb,cn=config. Besides olcAuthRegex mentioned by other posters, setting up an explicit access control entry for that DN is

Re: How do I allow root to edit mdb database?

On 02. aug. 2016 14:45, John Lewis wrote: On 08/02/2016 08:29 AM, John Lewis wrote: On 08/02/2016 08:17 AM, Hallvard Breien Furuseth wrote: (...) Set the global directive olcAuthzRegexp (in cn=config) aka authz-regexp (in slapd.conf) to "^gidNumber=0[+]uidNumber=0,cn=peercred,cn=external$"

Re: How do I allow root to edit mdb database?

On 08/02/2016 08:29 AM, John Lewis wrote: > On 08/02/2016 08:17 AM, Hallvard Breien Furuseth wrote: >> On 02. aug. 2016 13:15, John Lewis wrote: >>> If I wanted to map the permissions from >>> dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external to my >>> olcRootDN: which I will call

Re: How do I allow root to edit mdb database?

On 08/02/2016 08:17 AM, Hallvard Breien Furuseth wrote: > On 02. aug. 2016 13:15, John Lewis wrote: >> If I wanted to map the permissions from >> dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external to my >> olcRootDN: which I will call cn=Manager,dc=example,dc=com which is the >> olcRootDN:

Re: How do I allow root to edit mdb database?

On 02. aug. 2016 13:15, John Lewis wrote: If I wanted to map the permissions from dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external to my olcRootDN: which I will call cn=Manager,dc=example,dc=com which is the olcRootDN: for dn: olcDatabase={1}mdb,cn=config, how would I do it? Set the

Re: How do I allow root to edit mdb database?

On 08/02/2016 05:15 AM, Dieter Klünter wrote: > Am Tue, 2 Aug 2016 00:37:58 -0400 > schrieb John Lewis : > >> How do I allow root aka >> to edit >> olcDatabase={1}mdb,cn=config. I am trying to configure ldapscripts >> , but the

Re: How do I allow root to edit mdb database?

Am Tue, 2 Aug 2016 00:37:58 -0400 schrieb John Lewis : > How do I allow root aka > dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external to edit > olcDatabase={1}mdb,cn=config. I am trying to configure ldapscripts > , but the

How do I allow root to edit mdb database?

How do I allow root aka dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external to edit olcDatabase={1}mdb,cn=config. I am trying to configure ldapscripts , but the idea of having a password in the clear is just disturbing. Ldapscripts is in sbin