<br><br><div class="gmail_quote">On Wed, Dec 16, 2009 at 12:58 PM, Craig White <span dir="ltr"><<a href="mailto:craigwhite@azapple.com">craigwhite@azapple.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<div><div></div>allow           bind_anon_dn<br></div>
<br>
access to attrs=userPassword,sambaNTPassword,sambaLMPassword<br>
        by self write<br>
        by anonymous auth<br>
        by * none<br>
<br>
access to dn.regex="^uid=([^,]+)ou=People,dc=azapple,dc=com$$"<br>
        by self read<br>
        by anonymous auth<br>
        by * none<br>
<br>
# a bottom catchall rule...<br>
access to *<br>
        by anonymous read<br>
        by * read<br>
<br>
access to dn.base="cn=Subschema" by * read<br>
<div><div></div><div class="h5"><br clear="all"></div></div></blockquote></div><br>Have all that now..<br><br>Had to take out the samba stuff, openldap complained on restart.<br><br>[root@ldap home]# getent passwd | grep example<br>
[root@ldap home]# <br><br>Still nothing good from getent.<br><br>Peter<br><br>-- <br>Peter Serwe<br><a href="http://truthlightway.blogspot.com/">http://truthlightway.blogspot.com/</a><br>