[Zope] Authenticating with LDAP
Jens Vagelpohl
jens@zope.com
Thu, 20 Feb 2003 07:42:36 -0500
this error message is from LDAP. the account and password you entered
as the manager DN are simply not allowed to change the directory. this
is a LDAP server configuration problem and not really a LDAPUserFolder
problem. fill in a DN and password that have the right access level and
things should work.
jens
p.s.: you entered "uid=root,dc=mysite,dc=com" as the manager DN but
your slapd.conf only gives write access to
"cn=Manager,dc=mysite,dc=com" and "uid=xxx,ou=Person,dc=mysite,dc=com".
that is one very obvious mismatch.
On Thursday, Feb 20, 2003, at 04:50 US/Eastern, Krishna wrote:
> Hi !
>
> I' am using a LDAP user folder within my CMF site for authentication.
> The problem that I'am facing is that I' am not able to add any user or
> change any user properties. The error that appears is when I try to
> create a new user is...:
>
> >> An Error occurred:
> >> Error Type: Insufficient access
> >> Server Message: no write access to parent
>
> In the "slapd.conf" file I have set the access control lists to...
>
> >> access to filter="objectclass=myObject"
> >> by dn="uid=xxx,ou=Person,dc=mysite,dc=com" write
>
>
> and my ldbm database definitions are....
>
> >> database ldbm
> >> suffix "dc=mysite,dc=com"
> >> rootdn "cn=Manager,dc=mysite,dc=com"
>
>
> In my LDAP user folder i have also set the Manager DN to
> "uid=root,dc=mysite,dc=com" and have set the password too !
>
> With these access rights I'am able to authenticate into the site but
> have not been able to add or modify any user / user-properties....is
> there a workaround for this ?????????????????????
>
>
> ty,
>
> Kris
>
>
>
>
>
>
>
> _______________________________________________
> Zope maillist - Zope@zope.org
> http://mail.zope.org/mailman/listinfo/zope
> ** No cross posts or HTML encoding! **
> (Related lists - http://mail.zope.org/mailman/listinfo/zope-announce
> http://mail.zope.org/mailman/listinfo/zope-dev )