17191782 The OpenLDAP Server Administration exec_attr entries are out of date s11-update
authorStacey Marshall <Stacey.Marshall@Oracle.COM>
Tue, 02 Jun 2015 08:44:38 +0100
branchs11-update
changeset 4386 30b25a7b0e22
parent 4385 a2e3ced2a414
child 4387 4ab044a9367b
17191782 The OpenLDAP Server Administration exec_attr entries are out of date
components/openldap/Solaris/exec_attr
components/openldap/Solaris/ldap-olslapd.xml
--- a/components/openldap/Solaris/exec_attr	Tue Jun 02 08:44:37 2015 +0100
+++ b/components/openldap/Solaris/exec_attr	Tue Jun 02 08:44:38 2015 +0100
@@ -1,9 +1,1 @@
-OpenLDAP Server Administration:suser:cmd:RO::/usr/sbin/slapd:uid=openldap;gid=openldap;privs=basic,net_privaddr
-OpenLDAP Server Administration:suser:cmd:RO::/usr/sbin/slapacl:uid=openldap;gid=openldap
-OpenLDAP Server Administration:suser:cmd:RO::/usr/sbin/slapadd:uid=openldap;gid=openldap
-OpenLDAP Server Administration:suser:cmd:RO::/usr/sbin/slapauth:uid=openldap;gid=openldap
-OpenLDAP Server Administration:suser:cmd:RO::/usr/sbin/slapcat:uid=openldap;gid=openldap
-OpenLDAP Server Administration:suser:cmd:RO::/usr/sbin/slapdn:uid=openldap;gid=openldap
-OpenLDAP Server Administration:suser:cmd:RO::/usr/sbin/slapindex:uid=openldap;gid=openldap
-OpenLDAP Server Administration:suser:cmd:RO::/usr/sbin/slappasswd:uid=openldap;gid=openldap
-OpenLDAP Server Administration:suser:cmd:RO::/usr/sbin/slaptest:uid=openldap;gid=openldap
+OpenLDAP Server Administration:solaris:cmd:RO::/usr/lib/slapd:uid=openldap;gid=openldap;privs=basic,net_privaddr,file_dac_read,file_dac_write,file_dac_search
--- a/components/openldap/Solaris/ldap-olslapd.xml	Tue Jun 02 08:44:37 2015 +0100
+++ b/components/openldap/Solaris/ldap-olslapd.xml	Tue Jun 02 08:44:38 2015 +0100
@@ -22,7 +22,7 @@
 
 <!DOCTYPE service_bundle SYSTEM "/usr/share/lib/xml/dtd/service_bundle.dtd.1">
 <!--
-    Copyright (c) 2007, 2011, Oracle and/or its affiliates. All rights reserved.
+    Copyright (c) 2007, 2015, Oracle and/or its affiliates. All rights reserved.
 -->
 
 <service_bundle type='manifest' name='SUNWopenldapr:slapd'>
@@ -65,6 +65,12 @@
 		    name='start'
 		    exec='/lib/svc/method/ldap-olslapd start'
 		    timeout_seconds='60'>
+		    <method_context>
+			<method_credential
+			    user='openldap'
+			    group='openldap'
+			    privileges='basic,net_privaddr,file_dac_read,file_dac_write,file_dac_search' />
+		    </method_context>
 		</exec_method>
 
 		<exec_method