[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ACL and ObjectClass

Gessy Caetano da Silva Junior wrote:

access to attrs=!posixAccount
    by * read

Only the attributes required and/or allowed by objectClass posixAccount would be readed by anyone, right?
I tried this but it not work.

You missed a "not" word from the man page. With above, you denied access to all posixAccount attributes to everybody. What you want is "attrs=@posixAccount".

Aleksandar Milivojevic <amilivojevic@pbl.ca>    Pollard Banknote Limited
Systems Administrator                           1499 Buffalo Place
Tel: (204) 474-2323 ext 276                     Winnipeg, MB  R3T 1L7