[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ACLs to allow users to traverse DIT down to their own entry, lock down everything else

Andreas Ntaflos wrote:
So what do I need to do so users can specify "dc=example,dc=com" as
search base and traverse the directory tree down to their own DN entry?

Read the Operation Requirements section of slapd.access(5).

  -- Howard Chu
  CTO, Symas Corp.           http://www.symas.com
  Director, Highland Sun     http://highlandsun.com/hyc/
  Chief Architect, OpenLDAP  http://www.openldap.org/project/