[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
access control, groups/organizationalRole
- To: openldap-technical@openldap.org
- Subject: access control, groups/organizationalRole
- From: Frederik Bosch <frederik.bosch@gmail.com>
- Date: Mon, 23 Aug 2010 18:03:10 +0200
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from :user-agent:mime-version:to:subject:content-type :content-transfer-encoding; bh=FQnPPNQPyQn0ujRsjl/FMZDjzcq0rQUWbzFFSU5VERs=; b=V8DwO4zkiaHSU6xjXEI/fdcEt0wlGTgctkaxXOIK1INelDawM6aIuZfMgN4ObKcl40 9D3Aejtc8EJa9rAmxFP9pXPeI5Wb68uj/OaQl7FWC9wDbivVX/D9g8BADoKj9HYPbiam JNgVmaTdYWqxuxUKz2iOKMeYYC+sDuIAQ0Y/o=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject :content-type:content-transfer-encoding; b=f38L+kxl2TQJiyKC4E8blLDAeSCeUkweo6jDpq36arSJXRdp9ek/XQ/4Oy2FbLlkFQ mARy8jpNtfX3tdWMfDFyE4gJyQiuIx0N43ylMbSS+S/VI2PA6XeMWF2olzbLy2KokV93 ZlM//a/JBOdvL6alV7fH1G5xrau+OzC9D0pcY=
- User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.1.11) Gecko/20100713 Thunderbird/3.0.6
Hello,
I am trying to setup an access control rule, but failed. All occupants
of the objectClass organizationalRole which has a certain location may
have read access. How do I setup this rule in slapd.conf?
This is my line at the moment. This matches the dn of the occupant. But
how do I match the location attribute of the organizationalRole?
access to * by
group/organizationalRole/roleOccupant="cn=Administrator,dc=example,dc=com"
read
Thanks in advance,
Frederik