Deon George
dcb0269fc5
It is now possible to login with admin@test/password and update entries in dc=example.com
10 lines
492 B
Plaintext
10 lines
492 B
Plaintext
# At the moment we want to override osixia/ldap to enable anonymous reads
|
|
dn: olcDatabase={1}{{ LDAP_BACKEND }},cn=config
|
|
changetype: modify
|
|
delete: olcAccess
|
|
-
|
|
add: olcAccess
|
|
olcAccess: to * by dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth manage by * break
|
|
olcAccess: to attrs=userPassword,shadowLastChange by self read by dn="cn=admin,{{ LDAP_BASE_DN }}" write by anonymous read by * read
|
|
olcAccess: to * by self read by dn="cn=admin,{{ LDAP_BASE_DN }}" write by * read
|