Deyan Stoykov wrote: > Rich Megginson wrote: > >> Deyan Stoykov wrote: >> >>> Hi! >>> >>> I'm running centos-ds-8.1.0-1.el5. When I set up a list of allowed hosts >>> for an ACI, in addition to non-matching hosts, requests via LDAPI are >>> rejected as well. This does make sense, but is there a way to allow >>> connections from a list of remote hosts and via LDAPI? >>> >>> >> Can you provide the exact aci you're using? >> > > (targetattr = "roomNumber || uid || ..... || telephoneNumber || > facsimileTelephoneNumber") > (version 3.0; > acl "Anonymous access"; > allow (read,compare,search) > (userdn = "ldap:///anyone";) and > (ip="172.16.*.*") > ;) > > Currently this excludes LDAPI and I'd like to allow it. > Please file a bug. I don't think the aci syntax knows about ldapi. > Regards, > Deyan > >
