[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ldap user management

On Tuesday 25 April 2006 16:00, Matthieu wrote:
> hello list
> I'm running a slapd 2.2.26 version.
> I've add some datas.
> For the moment, I have only two users. Adminstrator user, and a read user.
> I doesn't allow anonymous read acces.
> But now, I would like to add some others distinct read account with
> specific write acces on their own datas.
> I think that I should must add the following read and rights acccess in the
> server configuration file slapd.conf.
> But if I had more and more user, does I need to have each time theses
> rights in the server configuration file and restart the server ?

If you can make generic ACLs, by using something like "by self write", or by 
using groups, or by using regex- or set-based ACLs, you should not need to 
change the ACLs in slapd.conf.

> Or their is another way to add access rights in the server management?

If you don't succeed with standard, group, or regex- or set-based ACLs, you 
can use back-config, or (last resort) use ACIs.


Buchan Milne
ISP Systems Specialist

Attachment: pgpsLJW1Bc6PG.pgp
Description: PGP signature