[Date Prev][Date Next] [Chronological] [Thread] [Top]

newbie: access control question

To: openldap-software@OpenLDAP.org
Subject: newbie: access control question
From: Bennett Samowich <brs@ben-tech.com>
Date: Fri, 23 Jun 2000 12:46:35 -0400

Greetings,

Is it possible to configure OpenLDAP to not divulge the contents of a particular attribute?

What I have is this:

attribute secretWord	cis

objectclass fspiPerson
	requires
		uid
	allows
		mail
		secretWord
		userPassword

I have tried:
access to attr=secretWord
	by self write
	by * none

yet the "secretWord" is still delivered to LDAP queries done from Netscape. The purpose is to hold a secondary verification word for use in an in-house application. No one needs to see it and IT should be the only ones to change it.

What am I missing?

Thanks in advance,
- Bennett

Prev by Date: OpenLDAP and aliases
Next by Date: A description field for Outlook?
Index(es):
- Chronological
- Thread