Account Options

  1. Sign in
The old Google Groups will be going away soon, but your browser is incompatible with the new version.
Google Groups Home
« Groups Home
ibm.software.ldap
Message from discussion TDI 6.1 - Restricted Access to the Directory Entries

View parsed - Show only message text

Path: g2news1.google.com!postnews.google.com!l32g2000yqc.googlegroups.com!not-for-mail
From: santoshmalavade <santoshmalav...@gmail.com>
Newsgroups: ibm.software.ldap
Subject: Re: TDI 6.1 - Restricted Access to the Directory Entries
Date: Wed, 3 Nov 2010 05:48:03 -0700 (PDT)
Organization: http://groups.google.com
Lines: 45
Message-ID: <dbac6b43-2e53-423b-9e81-1b71b205b42d@l32g2000yqc.googlegroups.com>
References: <75d6e878-e8a4-44e5-8ae9-9849c6a2f029@n3g2000yqa.googlegroups.com> <7dadd184-79bf-48ea-a394-780e77b9acb9@a37g2000yqi.googlegroups.com>
NNTP-Posting-Host: 121.241.230.131
Mime-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
X-Trace: posting.google.com 1288788483 11861 127.0.0.1 (3 Nov 2010 12:48:03 GMT)
X-Complaints-To: groups-abuse@google.com
NNTP-Posting-Date: Wed, 3 Nov 2010 12:48:03 +0000 (UTC)
Complaints-To: groups-abuse@google.com
Injection-Info: l32g2000yqc.googlegroups.com; posting-host=121.241.230.131; posting-account=B-oZzwoAAABR-4p2zz4va0kc_LMcAh7W
User-Agent: G2/1.0
X-HTTP-Via: 1.0 Webcat-Skein-C015900076-A4WIHZ (awarrenhttp/3.0.0.0.0)
X-HTTP-UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.12)
 Gecko/20101026 Firefox/3.6.12,gzip(gfe)

On Nov 3, 10:02=A0am, sunny <suniluce...@gmail.com> wrote:
> Do u have password policy enabled?
> Also, I would suggest u to try with nothing included from system
> attributes in the ACLs you have specified and see if it helps:-
>
> dn: CN=3DUSERS,DC=3DIBM,DC=3DIN
> entryowner: access-id:UID=3DTestDeletion,CN=3DUSERS,DC=3DIBM,DC=3DIN
> aclPropagate: TRUE
> aclEntry: access-
> id:UID=3DTestDeletion,CN=3DUSERS,DC=3DIBM,DC=3DIN:object:a:normal:rwsc:re=
stricted:rwsc:sensitive:rwsc:critical:rwsc
>
> (I've omitted the system:rsc part).
>
> --Sunny

hi Sunny,

thanks for your response.

i believe the global password policy is on

cn=3Dpwdpolicy, CN=3DIBMPOLICIES
ibm-pwdPolicy: true
ibm-pwdGroupAndIndividualEnabled: false

i tried the option suggested by you and removed the attribute class
system from the acl.

still, i am not able to bind to the ldap server using LDAP Browser
version 2.8.2 by jarek gawor, to the base dn CN=3DUSERS,DC=3DIBM,DC=3DIN

rgds,

santosh

Create a group - Google Groups - Google Home - Terms of Service - Privacy Policy
©2013 Google