[Date Prev][Date Next] [Chronological] [Thread] [Top]

access priv help

To: <OpenLDAP-software@OpenLDAP.org>
Subject: access priv help
From: "Mike Coughlan" <mcoughlan@gothambroadband.com>
Date: Fri, 20 Apr 2001 17:45:33 -0400
Importance: Normal
In-reply-to: <003901c0c9a5$2a97eb80$1800000a@nextgentel.corp>

Can someone please assist me on setting granular access privs?  I've read
the admin guide and searched the lists, but still need help.

Versions
Red Hat 6.2
openldap-1.2.9-6
openldap-devel-1.2.9-6

I have a classic OrgUnit, ou=Employees,o=GBB,c=US.  I would like to give
everyone write permissions to self, read permissions on cn, username,
telephonenumber etc. and no permissions on hometelephonenumber.  Basically I
would like some attributes private, most public, and authentification
possible against attributes username & userpassword.

If someone can mail me a similar slapd.conf as an example that would be
great. Here was my attempt:

access to dn="ou=Employees,o=GBB,c=US"
 by dn="cn=Admin,o=GBB,c=US" write
 by * search
 by self write

access to  dn="ou=Employees,o=GBB,c=US"
attr=mail,telephonenumber,cn,username
  by * read

Follow-Ups:
- Re: access priv help
  - From: David Young <dyoung@nettonettech.com>

References:
- Problems with adding a record
  - From: "Jakob Breivik Grimstveit" <jakobbg@reaktor.no>

Prev by Date: Re: Binding options - enable/disable?
Next by Date: Re: access priv help
Index(es):
- Chronological
- Thread