Re: Still fighting openldap

---

• From: Josh Miller <joshua@xxxxxxxxxxxxxxxxx>
• Date: Tue, 19 Feb 2008 12:22:42 -0800

---

m.roth2006@xxxxxxx wrote:

I've tried changing the first stanza to:
access: to attrs=shadowLastChange,userPassword
by * read
by self write
by anonymous auth

Do you get startup errors in your logs? Can you verify that your server is reading these ACLs? You keep adding a colon after access on the first ACL and I'm not sure that it would work -- and in fact, this would explain your "next problem".

Do you see the colon?

You do not need to give access to shadowLastChange to your users, that value is maintained by OpenLDAP.

HTH,
--
Joshua M. Miller - RHCE,VCP

--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list

---

• References:
  • Re: Still fighting openldap
    • From: m.roth2006

• Prev by Date: Re: RHEL 5 & NFS Input/Output Error
• Next by Date: Re: Still fighting openldap
• Previous by thread: Re: Still fighting openldap
• Next by thread: Re: Still fighting openldap
• Index(es):
  • Date
  • Thread

• Security
• UNIX
• Linux
• Coding
• Usenet

• Mailing-Lists
• Newsgroups
• About
• Privacy
• Search
• Imprint

linux.derkeiler.com  > Mailing-Lists  > RedHat  > 2008-02