[Date Prev][Date Next] [Chronological] [Thread] [Top]

crafting acls


I was wondering if there is a way to let specific users access (write ) given fields : 

• all my users are  in a single branch
• all my users are   inetOrgPerson + posixAccount
• users are distributed in several groups according to their gidNumbers
• some users are  priviledged and also belong to a given posixGroup

I would like to know if it is possible to write an acl so that : 

a priviledge user can modify some fields ( shell, homeDirectory )  of users whose gidNumber matches the gidNumber of the priviledged user