A little more on openLDAP
Josh Miller
joshua at itsecureadmin.com
Fri Feb 15 22:12:30 UTC 2008
Josh Miller wrote:
> m.roth2006 at rcn.com wrote:
>>
>>
> Try this instead:
>
> access to attrs=userPassword
> by self write
> by anonymous auth
> by * none
>
> access to * # all attributes except entries listed above
> by * read # anybody can read it
> by anonymous auth
>
>
>
Also, shadowLastChange is an internal attribute and should NOT appear in
your ACL.
HTH,
Josh, RHCE
More information about the redhat-list
mailing list