[Date Prev][Date Next]
Re: ACLs per host?
"Branko F. =?utf-8?q?Gra=C4=8Dnar?=" <email@example.com> writes:
> Hi there.
> I am wondering if i can setup ACLs per host/network?
> I would like some OU to be readable only from one subnet, writable from other
> and so on.
> Is this possible with openldap?
Yes, by means of incremental access rules i.e.
access to ou=foo
by peername 18.104.22.168 read continue
by peername 22.214.171.124 +w continue
by * none stop
see man slapd.access
Dieter Kluenter | Systemberatung
Tel:040.64861967 | Fax: 040.64891521