[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Question on ACL, SSL/TLS

To: Allan Streib <astreib@indiana.edu>
Subject: Re: Question on ACL, SSL/TLS
From: Oscar Bonilla <obonilla@galileo.edu>
Date: Thu, 26 Jul 2001 10:30:04 -0600
Cc: OpenLDAP List <openldap-software@OpenLDAP.org>
Content-disposition: inline
In-reply-to: <200107260410.f6Q4AZY10643@mask.uits.indiana.edu>; from astreib@indiana.edu on Wed, Jul 25, 2001 at 11:11:47PM -0500
References: <200107260410.f6Q4AZY10643@mask.uits.indiana.edu>
User-agent: Mutt/1.2.5i

Don't fully trust me on this but:

access to *
        by sockurl="^ldaps:///$" write

should do the trick...

regards,

-Oscar


On Wed, Jul 25, 2001 at 11:11:47PM -0500, Allan Streib wrote:
> Is it possible to define an ACL such that an attribute is accessable only 
> if the connection is secure (i.e. SSL).  I have a directory that contains 
> many non-sensitive attributes but a couple that should only be accessible 
> if the connection is encrypted.  I'd rather not force everything over SSL 
> since that puts an undue burden on many clients that won't access the 
> sensitive attributes.
> 
> Thanks,
> 
> Allan

-- 
pgp public key: finger obonilla@galileo.edu
pgp fingerprint: 9735 2F52 D499 17E2 D03B  5960 241D 09EA 349F 923E

Follow-Ups:
- Re: Question on ACL, SSL/TLS
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>

References:
- Question on ACL, SSL/TLS
  - From: Allan Streib <astreib@indiana.edu>

Prev by Date: RE: ldapadd update - FIXED
Next by Date: RE: autofs and OpenLDAP integration
Index(es):
- Chronological
- Thread