Skip to main content

Slapd olcAccess (ACL) utility

Project description

slapd acl

slapd olcAccess (ACLs) utility, your olcAccess in a human readable way.

Requirements

ldapsearch

Setup

pip3 install slapd_acl

Usage

using ldapi and mdb (default behaviour)

slapd_acl

specifing a base

slapd_acl -b 'olcDatabase={0}config,cn=config'

using different paramenters

usage: slapd_acl [-h] [-H H] [-Y Y] [-D D] [-w W] [-b B] [-ldif] [-enc ENC]

optional arguments:
  -h, --help  show this help message and exit
  -H H        LDAP URL
  -Y Y        SASL mechanism
  -D D        example cn:admin,dc=example,dc=org
  -w W        the user password
  -b B        Base LDAP Search
  -ldif       print a modify ldif
  -enc ENC    encoding

Modify ldif

-ldif option make the output in a ldif modify format.

Example

root@ldapmaster:~# slapd_acl -ldif
Executing:
 ldapsearch -Y EXTERNAL -H ldapi:///  -b 'olcDatabase={1}mdb,cn=config' -s base 'olcAccess' -LLL

SASL/EXTERNAL authentication started
SASL username: gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth
SASL SSF: 0

dn: olcDatabase={1}mdb,cn=config
changeType: modify
replace: olcAccess
olcAccess: to * 
 by dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth manage 
 by dn.exact="cn=admin,dc=testunical,dc=it" manage 
 by * break 
olcAccess: to attrs=userPassword,shadowLastChange,mail 
 by self write 
 by anonymous auth 
 by * break 
olcAccess: to * 
 by dn.children="ou=repl,dc=testunical,dc=it" read 
 by * break 
olcAccess: to dn.subtree="ou=people,dc=testunical,dc=it" 
 by dn.children="ou=idp,dc=testunical,dc=it" read 
 by self read 
 by * break 
olcAccess: to * 
 by anonymous auth 
 by * break 

Authors

Giuseppe De Marco

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

slapd_acl-0.2.0.tar.gz (2.8 kB view details)

Uploaded Source

File details

Details for the file slapd_acl-0.2.0.tar.gz.

File metadata

  • Download URL: slapd_acl-0.2.0.tar.gz
  • Upload date:
  • Size: 2.8 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/3.1.1 pkginfo/1.5.0.1 requests/2.23.0 setuptools/40.8.0 requests-toolbelt/0.9.1 tqdm/4.46.0 CPython/3.7.3

File hashes

Hashes for slapd_acl-0.2.0.tar.gz
Algorithm Hash digest
SHA256 c03fc07cfdb82a13b73f426c218f9a0ccc644f8b0aed3b8a48cf4ac061fea3a7
MD5 864c31267b57a0fa5dd43149c7404b7d
BLAKE2b-256 cfb39ea3adc89bd7f2c1f5d90af86c1c6dbec6f9b6ecd984867a46985cea773a

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page