[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: slapd and ACI's

To: Mark Adamson <adamson@andrew.cmu.edu>
Subject: Re: slapd and ACI's
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Date: Wed, 26 Apr 2000 10:59:11 +0200
Cc: openldap-devel@OpenLDAP.org
In-reply-to: <Pine.SOL.3.96L.1000419102129.598V-100000@nil.andrew.cmu.ed u>

At 10:24 AM 4/19/00 -0400, Mark Adamson wrote:
>What is the state of the development of ACI's in slapd?

Experimental.

>I see there is
>ACI code, all within  #ifdef SLAPD_ACI_ENABLED  statements. Is the code
>stable enough to use?

OpenLDAP-devel code, as a whole, is not for general use.

>I am having trouble with getting the slapd ACLs to do things that I'd like
>for them to do, like allowing individual users to control the access to
>information in their entries (e.g. telephoneNumber), and the ACI seems
>like an appropriate solution.

Yes.  The primary purpose of ACI is to allow a directory manager
to selectively delegate access control to users.

Prev by Date: RE: dynamic module load failure, resolved
Next by Date: Re: Partitial results
Index(es):
- Chronological
- Thread