[Date Prev][Date Next] [Chronological] [Thread] [Top]

access control help

To: openldap-software <openldap-software@OpenLDAP.org>
Subject: access control help
From: Peter Lüders <pe7@gmx.de>
Date: Sat, 16 Jun 2001 20:07:37 +0200

hello

i want to get following: the ldap data is structured in this way:

root
  cn=user1
    adress0
    adress1
    adress2
    ...
  cn=user2
    adress0
    adress1
    adress2
    ...
  cn=user3
...

my current configuration is:

access to attr=userPassword
  by self write
  by anonymous auth
  by dn="cn=Admin,dc=orderrace,dc=com" write
  by * none
access to *
  by users write

but the problem is, that each user is able to read and write also other
subtrees. is it possible to set up sldap.conf in the way that each user
can read and write only within its own subtree ? it were good if i hadnt
to write a access rule for every users because than i had to restart the
ldap after each user-change. could someone plases give me an example how
i could set the access right ? i have made a lot of trials but didnt
succeed and also couldnt find help within the list archive.

thanks

p.lüders

--
(((http://jzone.de)))

Follow-Ups:
- Re: access control help
  - From: David Olivier <David.Olivier@univ-lyon2.fr>

Prev by Date: Re: absolutely frustrated
Next by Date: Re: access control help
Index(es):
- Chronological
- Thread