Hi,
just trying to populate my first ldap directory. Somehow I cannot bind
to the server as the admin user.
Here is my access configuration (slapd.conf):
access to * by dn="cn=admin, ou=People, o=Universitaet Marburg, c=DE" write
defaultaccess none
When I try
ldapsearch -v -D "cn=admin, ou=People, o=Universitaet Marburg, c=DE" -W
"objectclass=*"
then I get
ldap_init( (null), 0 )
Enter LDAP Password:
filter pattern: objectclass=*
returning: ALL
filter is: (objectclass=*)
0 matches
and the server log says (truncated):
=> access_allowed: entry (umrhash=be372a6afc2ebbc83780de57e41132cf, ou=People,
o=Universitaet Marburg, c=DE) attr (objectclass)
=> acl_get: entry (umrhash=be372a6afc2ebbc83780de57e41132cf, ou=People,
o=Universitaet Marburg, c=DE) attr (objectclass)
<= acl_get: [1] global acl umrhash=be372a6afc2ebbc83780de57e41132cf,
ou=People, o=Universitaet Marburg, c=DE attr: objectclass
=> acl_access_allowed: search access to entry "umrhash=be372a6afc2ebbc83780de57
e41132cf, ou=People, o=Universitaet Marburg, c=DE"
=> acl_access_allowed: search access to value "any" by
"CN=ADMIN,OU=PEOPLE,O=UNIVERSITAET MARBURG,C=DE"
<= acl_access_allowed: denied by default (no matching by)
Why do I have no access to the directory?
When I mistype the password I get
dap_init( (null), 0 )
Enter LDAP Password:
ldap_bind: Invalid credentials
and when I set
defaultaccess read
in slapd.conf then I get all the data I want.
Do you have a hint what may have gone wrong?
Thanks!
BTW: How do I manage to include a line break in a cis (LDIF format)
Thomas
