LDAP auth
Patrick Nelson
pnelson at neatech.com
Mon Jan 5 17:37:36 UTC 2004
On Mon, 2004-01-05 at 03:32, Lucas Brasilino wrote:
> Hi Patrick:
>
> > Am trying to move an LDAP authentication server over to my Fedora
> > system. However, it isn't working. Here are the specifics:
> >
> > Old system: RH72 openldap-server-2.0.27-2.7.3
> > New system: FD1 openldap-server-2.1.22-8
> <snip>
> > All I want this to do is authenticate users. Anyone know what I have to
> > do to get this to authenticate. It adds to the LDAP db (I can see it
> > using ldapsearch) but when I change the authentication to then new
> > server it doesn't work.
> >
> > Any ideas would be much appreciated.
> >
> >
>
> First check the ACL configuration in OpenLDAP 2.1.22. Another
> guess is checking TLS/SSL configuration.
This worked fine in the old server but here is the ACL
------snip-------
access to attr=userPassword
by self write
by anonymous auth
by dn="cn=manager,dc=neatech,dc=com" write
by * none
access to dn=cn=manager,dc=neatech,dc=com attr=entry
by self write
by dn="cn=manager,dc=neatech,dc=com" write
by * none
access to dn=ou=(group|people)),dc=neatech,dc=com attr=entry
by self write
by dn="cn=manager,dc=neatech,dc=com" write
by * read
access to *
by users read
by self write
by dn="cn=manager,dc=neatech,dc=com" write
by * read
------snip-------
and TLS stuff:
------snip-------
TLSCertificateFile /usr/share/ssl/certs/slapd.pem
TLSCertificateKeyFile /usr/share/ssl/certs/slapd.pem
------snip-------
anything blatantly wrong here?
More information about the fedora-list
mailing list