[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: multiple bases?


Sorry it has been a while, I am just now getting back to this.

You are saying that as the overall manager, I could create an entry,
say poweruser1 that could change, delete and create new entries for
everyone I put in a particular group, but might only have anon access
(unless specified otherwise) for all other entries?

-----Original Message-----
From: owner-openldap-software@OpenLDAP.org
[mailto:owner-openldap-software@OpenLDAP.org]On Behalf Of E. M. Recio
Sent: Wednesday, August 13, 2003 9:42 AM
To: Douglas B. Jones
Cc: openldap-software@OpenLDAP.org
Subject: Re: multiple bases?

Douglas B. Jones wrote:

> 2) creation of entries. From what I can tell, to create an entry
>    I need the rootpw (slapd.conf). If I have multiple entities,
>    I do not want one to have the others' rootpw.

You dont. Set up the ACI/ACL correctly for a group of users, and then 
add a user to that group. See the section on ACL's for more info.