On Mon, 2016-11-21 at 13:11 +0000, sbrown@xxxxxxxxxxxxxxxxxxxxxxxx wrote: > Hi All, > > Older Directory Server 1.2.6 - Fedora > > On my test server, I was trying to mimic some behaviour restrictions that exists on another LDAP server, > > Using console I managed to create an ACI for ALL Users to disallow access completely to test123 OU, realising perhaps now even Admin can no longer access, which is too much of a restriction, I need to remove the ACI. After a restart of dirsrv.target and admin, the test OU is no longer listed, so I cant 'set access permissions'. However I know it exists as it was my user actions that likely caused this and I can't recreate an OU with the same name as I get *error 68*. > > Is there any way I can manually remove this ACI setting? Use the Directory Manager account. Also, try not to set "deny" access controls, only ever set "limited allow" controls. -- Sincerely, William Brown Software Engineer Red Hat, Brisbane
Attachment:
signature.asc
Description: This is a digitally signed message part
_______________________________________________ 389-users mailing list -- 389-users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to 389-users-leave@xxxxxxxxxxxxxxxxxxxxxxx
