On 03/03/2014 08:08 PM, Morgan Jones wrote:
On Mar 3, 2014, at 11:07 AM, Ludwig Krispenz <lkrispen@xxxxxxxxxx> wrote:
Hi,
so you say that a search with a specific bind user sometimes succeeds and sometimes doesn't ?
Correct.
If so, could you run this withe aci logging enabled ?
Sure though we are still unable to repeat the problem reliably so haven't caught it happening with aci debugging turned on. I'm going to work on various scenarios to do so in our dev environment.
Are groups involved in the acis and do these groups during these runs ?
Yes, most of our ACIs use groups to determine access. I'm not sure I understand the second part of your question though.
you can't, it was incomplete. I wanted to know if these groups are
modified during the runs when you see the failure.
I do suspect this has something to do with access control though as it's behaving exactly like the user is denied by the ACIs.
Could you post your acis ?
Probably. I'm working on permission to do so.
thanks,
-morgan
--
389 users mailing list
389-users@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/389-users
--
389 users mailing list
389-users@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/389-users