On Mon, 2016-11-21 at 13:11 +0000, sbrown@douglasdatasystems.co.uk
wrote:
> Hi All,
>
> Older Directory Server 1.2.6 - Fedora
>
> On my test server, I was trying to mimic some behaviour restrictions that exists on another LDAP server,
>
> Using console I managed to create an ACI for ALL Users to disallow access completely to test123 OU, realising perhaps now even Admin can no longer access, which is too much of a restriction, I need to remove the ACI. After a restart of dirsrv.target and admin, the test OU is no longer listed, so I cant 'set access permissions'. However I know it exists as it was my user actions that likely caused this and I can't recreate an OU with the same name as I get *error 68*.
>
> Is there any way I can manually remove this ACI setting?
Use the Directory Manager account.
Also, try not to set "deny" access controls, only ever set "limited
allow" controls.
--
Sincerely,
William Brown
Software Engineer
Red Hat, Brisbane
No comments:
Post a Comment