[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: slapd ACL - limit bind to employeeType=<various>
- Subject: Re: slapd ACL - limit bind to employeeType=<various>
- From: Tim Watts <tim.j.watts@kcl.ac.uk>
- Date: Tue, 12 Apr 2016 10:58:01 +0100
- Authentication-results: openldap.org; dkim=none (message not signed) header.d=none;openldap.org; dmarc=none action=none header.from=kcl.ac.uk;
- Cc: "openldap-technical@openldap.org" <openldap-technical@openldap.org>
- In-reply-to: <0968d7b215ff40e3a7d41f5ce22447cd@AM4PR03MB1682.eurprd03.prod.outlook.com>
- References: <570ACD82.5070000@kcl.ac.uk> <f9a748d036b34a9290d70b247049f210@AM4PR03MB1682.eurprd03.prod.outlook.com> <570CC1DA.2070407@kcl.ac.uk> <0968d7b215ff40e3a7d41f5ce22447cd@AM4PR03MB1682.eurprd03.prod.outlook.com>
- Spamdiagnosticmetadata: NSPM
- Spamdiagnosticoutput: 1:23
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.6.0
On 12/04/16 10:54, Michael Ströder wrote:
Writing OpenLDAP ACLs is a bit like functional
programming - at least to what I vaguely remember
from my time at University many years ago.
I'd recommend to look into the OpenLDAP FAQ to
find some more not so obvious examples.
:)
It's something that takes time to "get" - bit like exim configuration.
Very powerful, but a little bit of an art that's not quite like anything
else!
--
Tim Watts Tel (VOIP): +44 (0)1580 848360
Systems Manager Kings Digital Lab (KDL), King's College London
Systems Messages and Notifications: https://systemsblog.cch.kcl.ac.uk/