Question on monitoring authorization

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: fedora-directory-users@xxxxxxxxxx
Subject: Question on monitoring authorization
From: "Chun Tat David Chu" <beyonddc.storage@xxxxxxxxx>
Date: Mon, 7 Jul 2008 11:21:22 -0400
Reply-to: "General discussion list for the Fedora Directory server project." <fedora-directory-users@xxxxxxxxxx>

Hi all,

I've a question on monitoring authorization.

When a user without sufficient privileges and perform a search request on the LDAP, the user will receive an empty result from the LDAP.

I followed the instruction from the Red hat Directory Server Administrator's Guide and set the access mode to 777 to log all read, write and execute commands.

When I look at the log of an unauthorize user, all I see is the following
[07/Jul/2008:11:08:37 -0400] conn=42 op=81 SRCH base="ou=sandbox,ou=my_test,dc=example,dc=com" scope=1 filter="(objectClass=*)" attrs="objectClass javaClassName"
[07/Jul/2008:11:08:37 -0400] conn=42 op=81 RESULT err=0 tag=101 nentries=0 etime=0

The log doesn't indicate any authorization error. I was wondering if there's additional settings that I can set on Fedora DS so I can easily tell if a user is not authorize to perform a search operation on the LDAP.

Thanks!

- David

--
Fedora-directory-users mailing list
Fedora-directory-users@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-directory-users

Follow-Ups:
- Re: Question on monitoring authorization
  - From: Rich Megginson

Prev by Date: Re: Case Sensitive Lookup and Searching
Next by Date: Re: Case Sensitive Lookup and Searching
Previous by thread: A multi-master disaster
Next by thread: Re: Question on monitoring authorization
Index(es):
- Date
- Thread

[Fedora Directory Devel] [Fedora Announce] [Fedora Legacy Announce] [Home] [Fedora Tools] [Kernel] [Fedora Legacy] [Share Photos] [Fedora Desktop] [PAM] [Red Hat Watch] [Red Hat Development] [Red Hat 9 Bible] [Red Hat 9] [Big List of Linux Books] [Gimp] [Yosemite News]