[Date Prev][Date Next] [Chronological] [Thread] [Top]

ACL questsion about "by group"

I am sure I'm not understanding this right.  What I would like to do is grant 
access based on membership in a posixGroup entry.  I am not seeming to get 
the syntax right.  I've tried doing:

access to <resource>
	by group="cn=PosixGroup,dc=mycompany,dc=com" write

That group contains three memberUID entries.  The ACL is not working though.

I read slapd.access carefully and even tried:
by group/posixGroup/memberUID="cn=PosixGroup,dc=mycompany,dc=com" write

But that one doesn't work either.  I'm thinking I am probably not 
understanding some of the conventions used in the man page.  Any help would 
be great!