Rich Megginson wrote:
Deyan Stoykov wrote:
> Hi!
>
> I'm running centos-ds-8.1.0-1.el5. When I set up a list of allowed hosts
> for an ACI, in addition to non-matching hosts, requests via LDAPI are
> rejected as well. This does make sense, but is there a way to allow
> connections from a list of remote hosts and via LDAPI?
>
Can you provide the exact aci you're using?
(targetattr = "roomNumber || uid || ..... || telephoneNumber ||
facsimileTelephoneNumber")
(version 3.0;
acl "Anonymous access";
allow (read,compare,search)
(userdn = "ldap:///anyone") and
(ip="172.16.*.*")
;)
Currently this excludes LDAPI and I'd like to allow it.
Regards,
Deyan
--
Deyan Stoykov, dstoykov(a)uni-ruse.bg
System administrator
University of Ruse