From d0a6d20f081c1e0ecaaba490c80f795716d44bf0 2015-03-08 11:21:14
From: Branko Majic <branko@majic.rs>
Date: 2015-03-08 11:21:14
Subject: [PATCH] MAR-7: Authorise the LDAP admin to manage directory as well.

---

diff --git a/testsite/group_vars/ldap.yml b/testsite/group_vars/ldap.yml
index 4293a104e6505da12f43dc7ffb27b3b14326dfa3..ec9e1434a4b96161143ee14387418f8cf9a8d5b1 100644
--- a/testsite/group_vars/ldap.yml
+++ b/testsite/group_vars/ldap.yml
@@ -25,12 +25,12 @@ ldap_permissions:
       - >
         to *
         by dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth manage
+        by dn="cn=admin,dc=example,dc=com" manage
         by * break
       - >
         to attrs=userPassword,shadowLastChange
         by self write
         by anonymous auth
-        by dn="cn=admin,dc=example,dc=com" write
         by * none
       - >
         to dn.base=""