[Date Prev][Date Next] [Chronological] [Thread] [Top]

ACL per user or per application ?

To: openldap-software@OpenLDAP.org
Subject: ACL per user or per application ?
From: DEVRIENDT ERIK <erik.devriendt@siemens.com>
Date: Mon, 19 Jan 2004 13:39:23 +0100

We intend to use LDAP for user athentication in our (distributed)
application.
Users will always have to go through an application to modify their pasword
and
other user information.
User administration will be delegated to local admins. These too will have
to
use a custom application to do their admin work.
In other words, nobody should use generic LDAP tools to access the database.

My question now is: do we implement ACLS in terms of user groups,
or do we better implement the ACLs with application accounts ?
What is best in what case ?

Thanks

Erik Devriendt
Project Engineer

Siemens n.v./s.a. 
EIT-ES5
Tel. ++32 2-536.48.56 
Fax ++32 2-536.28.80 

mailto:Erik.Devriendt@siemens.com
http://www.siemens.be

Prev by Date: Re: ldap_bind PHP
Next by Date: Re: Authentication Problem without anonymous bind
Index(es):
- Chronological
- Thread