[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ACL questions.

To: Openldap list <openldap-software@OpenLDAP.org>
Subject: Re: ACL questions.
From: Quanah Gibson-Mount <quanah@stanford.edu>
Date: Tue, 09 Mar 2004 09:24:27 -0800
Content-disposition: inline
In-reply-to: <1078844621.13879.4.camel@localhost>
References: <1078844621.13879.4.camel@localhost>

---------------- Diego Wrote --------------------------------------------
I did not mean to  hijack anybody's subject, my questions are different
to the previous ones but I made the mistake of not checking the list first
to find out if the subject was already used.

My questions are.  How to allow one dn to put a single entry under the
root tree of the ldap directory without using the rootdn user; and the
second question is if there is any way to sumarize all attributes that
belong to a schema; e.g.
acces to something attr=ALL_SAMBA_ATTRBITUES_FROM_SAMBA.SCHEMA
	by dn=something write

-------------------------------------------------------------------------

Diego,

Read up on objectclasses. You can say access to something attr=<objectclass>. That allows access to every attribute in an objectClass. If all the samba attributes belong to samba objectclass(es), then you can just use those.

--Quanah

--
Quanah Gibson-Mount
Principal Software Developer
ITSS/TSS/Computing Systems
ITSS/TSS/Infrastructure Operations
Stanford University
GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html

References:
- [Fwd: Re: ACL questions.]
  - From: Tony Earnshaw <tonye@billy.demon.nl>

Prev by Date: guardar StartTLS with Debian and Solaris 9 [forwarded from R. E. Ceiver
Next by Date: Re: openldap-2.1.27 - slapd not dying
Index(es):
- Chronological
- Thread