> Mandi! Marco D'Ettorre > la mia ACL รจ: > > access to dn.children="ou=People,dc=sv,dc=lnf,dc=it" > attrs=entry,@inetLocalMailRecipient,physicalDeliveryOfficeName,telephoneNumber,mail,description > by > set="([uid=]+[cn=ced,ou=Group,dc=sv,dc=lnf,dc=it]/memberUid+[,ou=People,dc=sv,dc=lnf,dc=it]) > & user" write > by * break > > mentre se metto: > > access to dn.children="ou=People,dc=sv,dc=lnf,dc=it" > attrs=entry,@inetLocalMailRecipient,physicalDeliveryOfficeName,telephoneNumber,mail > by dn.exact="uid=gaio,ou=People,dc=sv,dc=lnf,dc=it" write > by * break > > funziona perfettamente.
Domanda stupida: che cosa contiene "[cn=ced,ou=Group,dc=sv,dc=lnf,dc=it]/memberUid" ? Sei sicuro di autenticarti come "uid=gaio,ou=People,dc=sv,dc=lnf,dc=it" ? Ciao, p. Ing. Pierangelo Masarati OpenLDAP Core Team SysNet s.r.l. via Dossi, 8 - 27100 Pavia - ITALIA http://www.sys-net.it --------------------------------------- Office: +39 02 23998309 Mobile: +39 333 4963172 Email: [EMAIL PROTECTED] --------------------------------------- _______________________________________________ OpenLDAP mailing list [email protected] https://www.sys-net.it/mailman/listinfo/openldap
