[Date Prev][Date Next] [Chronological] [Thread] [Top]

ACLs by netgroup?

To: OpenLDAP-software@OpenLDAP.org
Subject: ACLs by netgroup?
From: samuel gipe <sgipe@yahoo.com>
Date: Fri, 3 Feb 2006 15:02:44 -0800 (PST)
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=Message-ID:Received:Date:From:Subject:To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=MBmvauJFAn1OcO9iBJ/NlMwzfajv3l9daSBFiUV616ByGqRhXIuGYGo9i3jxVxbE+bUKUqZb2LvoR9LFYqeACZVzjIFXSkMQuVfEZvk2ePybCqYq/akNCjL8on6FeVYo9Y9dtsn5TllMjisaXRr0z3xCmN+6DYf+h7RLOBHVoHo= ;

Hi All,

Using the ldap search filter terminology (rfc 2254), is it possible to return
the dn of each uid specified in a given netgroup?

I am trying to designate a slapd.conf ACL which allows one to write the
userPassword and shadowLastChange field of members of the given netgroups. 
Ultimately, I would like to allow managers to change the passwords of their
reports (who are listed in netgroups).

Generally, is it possible to define the "to what" portion of ACLs via
netgroups.

Things I've done prior to mailing include but are not limited to: man
slapd.conf, man slapd.access, reading the Oreilly book, reading rfc2254,
experimentation.

thanks
sam

__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com

Follow-Ups:
- Re: ACLs by netgroup?
  - From: Pierangelo Masarati <ando@sys-net.it>

Prev by Date: Re: OL 2.3.19, delta-syncrepl issue
Next by Date: Re: OL 2.3.19, delta-syncrepl issue
Index(es):
- Chronological
- Thread