On Mon, 2016-01-18 at 12:25 -0500, Rob Crittenden wrote: > > > > Btw it works both with groupdn = "ldap:///anyone"; as well asuserdn > > = "ldap:///anyone"; > > Interesting, good to know. I would assume it means "so long as you are a member of at least one group on the server, you have access to this" It would be worth trying something like: uid=testaccount,dc=example,dc=com objectClass: top objectClass: account objectClass: simpleSecurityObject uid: testaccount cn: testaccount userPassword: bar And then seeing if this has access to the cn=config, even though it has no group..... -- Sincerely, William Brown Software Engineer Red Hat, Brisbane
Attachment:
signature.asc
Description: This is a digitally signed message part
-- 389 users mailing list 389-users@%(host_name)s http://lists.fedoraproject.org/admin/lists/389-users@xxxxxxxxxxxxxxxxxxxxxxx
