[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
LDAP DIT
Hello,
I'm a newby in LDAP. At the moment I'm thinking about how to design a DIT
which meets the following requirements:
- this specific DIT is more of a subtree, i.e. there is a company wide DIT
which is fixed on the higher levels. From a certain level on it is free an
can be designed according to specific requirements as stated below:
- application-entries should be contained in the DIT
- application specific roles- and rights-entries should be contained in the
DIT. It must be possible to add or remove rights from roles.
- User Group-entries which have roles and therefore rights for several
applications should be contained in the DIT, e.g. a User Group 'X' has the
Roles 'R1' of Application 'A1' and 'R2' of Application 'A5'. It must be
possible to add or remove users to/from User Groups.
Does anybody have some proposals how such a DIT could be structured
hierarchically? Any information is greatly appreciated. Thanks in advance.
> Mit freundlichen Grüßen / Best regards
> Oliver Schönhaar
> _____________________________________
> Robert Bosch GmbH, QI/CCT22
> 70469 Stuttgart-Feuerbach - Wiener Str. 42 - Fe 055/3
> Tel.: ++49 711 811 - 31280 (BCN 9020 - 31280)
> Fax: ++49 711 811 - 263740 (BCN 9020 - 263740)
> mailto:Oliver.Schoenhaar@de.bosch.com
> New: Visit us at: http://www.intranet.bosch.de/qi/asn
>
>