Le 11/02/2011 18:26, Mailing Lists a écrit : > Hello. > > I'm running a pair of openldap 2.4 servers which replicate cn=config DB > in mirror mode. > Is there a way to configure a RO user (like user from BDB) for cn=config > DB, so should someone get a hold of it's password, and still will not be > able to change the configs ?
Hi, I'm not entirely sure I've understood your question, but you can write ACLs to allow any user (using any DN, thus including a DN from a BDB database) access to the cn=config subtree. Jonathan -- -------------------------------------------------------------- Jonathan Clarke - jonat...@phillipoux.net -------------------------------------------------------------- Ldap Synchronization Connector (LSC) - http://lsc-project.org --------------------------------------------------------------
