[Date Prev][Date Next] [Chronological] [Thread] [Top]

ACL question...

To: OpenLDAP-software@OpenLDAP.org
Subject: ACL question...
From: Amith Varghese <amithv@yahoo.com>
Date: 26 Feb 2002 13:36:43 -0500

I have a directory structure that I am trying to set up in the following
manner for a Personal Address Book

ou=Personal AddressBook,dc=mydomain,dc=com
  ou=user1,ou=Personal AddressBook,dc=mydomain,dc=com
    cn=Peter Young,ou=user1,ou=Personal AddressBook,dc=mydomain,dc=com
    cn=John Smith,ou=user1,ou=Personal AddressBook,dc=mydomain,dc=com
  ou=user2,ou=Personal AddressBook,dc=mydomain,dc=com
  ou=user3,ou=Personal AddressBook,dc=mydomain,dc=com
  ou=user4,ou=Personal AddressBook,dc=mydomain,dc=com
.
.
.

and so on

user1 will bind to LDAP with the following DN
cn=user1,ou=logins,dc=mydomain,dc=com

I want to set up my ACLs so that user1 can read/write entries only under
their Personal AddressBook DN (ex. cn=user1,ou=logins,dc=mydomain,dc=com
for ou=user1,ou=Personal AddressBook,dc=mydomain,dc=com).  I've tried
some different ACLs, but I'm having some problems constructing the right
ACL.  

Also note that ou=user1,ou=Personal AddressBook,dc=mydomain,dc=com is
not the owner of the object.  I created that with my rootdn account. 

Thanks
Amith Varghese 







_________________________________________________________
Do You Yahoo!?
Get your free @yahoo.com address at http://mail.yahoo.com

Prev by Date: RE: Indexing LDAP entries
Next by Date: Re: Memory leak bug (bug 1116) still valid?
Index(es):
- Chronological
- Thread