[Date Prev][Date Next] [Chronological] [Thread] [Top]

Allowing an entry the full ability on a group/ou

To: OpenLDAP-software@OpenLDAP.org
Subject: Allowing an entry the full ability on a group/ou
From: "Douglas B. Jones" <douglas@gpc.edu>
Date: Mon, 07 Jul 2003 18:26:34 -0400
Cc: Douglas B Jones <douglas@gpc.edu>
Importance: Normal
In-reply-to: <3F09CC43.9060808@mentata.com>

Hi,

I want a user, call them guestadmin, who can authenticate
and be able to create other users entries in ldap only for
the group guest. I want this guestadmin to have full access
to be able to do this. Yet, at the same time I do not want
them to have any more than normal user authentication for
other entries as dictated by normal access rules. Basically,
they would be like the root admin, but only able to create/
delete/modify entries in the guest group.

This looks like it needs to be another base. If so, can you
have more than one base on the same server? I haven't found
any doc. on that yet?

Thanks,
Cheers,
Douglas

References:
- referrals and mystery sizelimit
  - From: Jon Roberts <jon@mentata.com>

Prev by Date: Am I using the right way to test
Next by Date: non-public address book
Index(es):
- Chronological
- Thread