Ldapsearch query for own entry returns "no such object", when executed by normal LDAP user.

Solution Verified - Updated -

Issue

Per below ACL, ldap user's should be able to query his own entry, but not other users.

access to attrs=userPassword
 by anonymous auth
 by self write
 by * none
access to dn.subtree="ou=People,dc=example,dc=com"
 by self read
 by * none

However, it returns "no such object" error when executed by user itself.

ldapsearch -p 389 -h xx.xx.xx.xx -D "uid=user1,ou=people,dc=example,dc=com" -b "ou=people,dc=example,dc=com" uid=user1

Environment

  • Red Hat Enterprise Linux
  • OpenLDAP

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content