[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: slapd and ACI's

At 10:24 AM 4/19/00 -0400, Mark Adamson wrote:
>What is the state of the development of ACI's in slapd?


>I see there is
>ACI code, all within  #ifdef SLAPD_ACI_ENABLED  statements. Is the code
>stable enough to use?

OpenLDAP-devel code, as a whole, is not for general use.

>I am having trouble with getting the slapd ACLs to do things that I'd like
>for them to do, like allowing individual users to control the access to
>information in their entries (e.g. telephoneNumber), and the ACI seems
>like an appropriate solution.

Yes.  The primary purpose of ACI is to allow a directory manager
to selectively delegate access control to users.