[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Acls in OpenLDAP

That's pretty much correct for now. It will soon change in 2.3.

Owen DeLong wrote:

I believe you need to use ACI and not ACL.  ACI are a newer feature and
are not well documented yet, but, ACI allows you to use the LDAP database
to specify the equivalent functionality of ACL (which are hard-coded
into slapd.conf).


--On Friday, March 4, 2005 12:10 AM -0800 Gaurav Khanna <khannapost@yahoo.com> wrote:


We have a requirement to set the ACLs programmatically through JAVA
(JNDI) and it seems as if the ACL is not an attribute on the user or
group entries. This leads me to believe that ACLs for a user and group
cannot be set using JNDI.

Can the ACL be specified on the individual user or group entry? Can I use
LDIF to add or update ACLs?



 -- Howard Chu
 Chief Architect, Symas Corp.       Director, Highland Sun
 http://www.symas.com               http://highlandsun.com/hyc
 Symas: Premier OpenSource Development and Support