X-Git-Url: https://git.sur5r.net/?a=blobdiff_plain;f=servers%2Fslapd%2Fslapd.conf;h=fdc682fc77dddbdd47c80b4069170c615e1ae272;hb=f89308915aabff352eb390a1e58a71127b7ebd26;hp=92c106f571ca897a72b0729ae61ecbbb921702e4;hpb=9f8a0e7d1be619f0e7ee6d8aac9af57d4ad4f1c4;p=openldap

diff --git a/servers/slapd/slapd.conf b/servers/slapd/slapd.conf
index 92c106f571..fdc682fc77 100644
--- a/servers/slapd/slapd.conf
+++ b/servers/slapd/slapd.conf
@@ -21,6 +21,24 @@ argsfile	%LOCALSTATEDIR%/slapd.args
 # moduleload	back_passwd.la
 # moduleload	back_shell.la
 
+#
+# Sample Access Control
+#	Allow read access of root DSE
+#	Allow self write access
+#	Allow authenticated users read access
+#	Allow anonymous users to authenticate
+#
+#access to dn="" by * read
+#access to *
+#	by self write
+#	by users read
+#	by anonymous auth
+#
+# if no access controls are present, the default is:
+#	Allow read by all
+#
+# rootdn can always write!
+
 #######################################################################
 # ldbm database definitions
 #######################################################################
@@ -35,7 +53,7 @@ rootdn		"cn=Manager,dc=my-domain,dc=com"
 # Use of strong authentication encouraged.
 rootpw		secret
 # The database directory MUST exist prior to running slapd AND 
-# should only be accessable by the slapd/tools. Mode 700 recommended.
+# should only be accessible by the slapd/tools. Mode 700 recommended.
 directory	%LOCALSTATEDIR%/openldap-ldbm
 # Indices to maintain
 index	objectClass	eq