[Date Prev][Date Next] [Chronological] [Thread] [Top]

access control help



hello

i want to get following: the ldap data is structured in this way:

root
  cn=user1
    adress0
    adress1
    adress2
    ...
  cn=user2
    adress0
    adress1
    adress2
    ...
  cn=user3
...

my current configuration is:

access to attr=userPassword
  by self write
  by anonymous auth
  by dn="cn=Admin,dc=orderrace,dc=com" write
  by * none
access to *
  by users write

but the problem is, that each user is able to read and write also other
subtrees. is it possible to set up sldap.conf in the way that each user
can read and write only within its own subtree ? it were good if i hadnt
to write a access rule for every users because than i had to restart the
ldap after each user-change. could someone plases give me an example how
i could set the access right ? i have made a lot of trials but didnt
succeed and also couldnt find help within the list archive.

thanks

p.lüders

--
(((http://jzone.de)))