[Date Prev][Date Next]
Re: Help with ACLs
"David Clarke" <firstname.lastname@example.org> writes:
> Hello and apologies if I'm posting this in the wrong location.
> I'm trying to apply some security to my openldap repository and I'm
> struggling with how or even if I can express a particular constraint.
> What I would like to do is restrict the user to having read access
> only to those subsidiary organisations based on the value of the
> user's "o" attribute. Is this a reasonable approach or should I be
> expressing this differently in my schema?
Try access control by sets
Dieter Klünter | Systemberatung
GPG Key ID:8EF7B6C6