Is there a way to express an access control based on an attribute value of the binded user in OpenLDAP? I would like to do the equvivalent of: Access to <what> by dn="cn=(.*),dc=ruc,dc=dk" filter=(userType=Student) read Ie use a filter in the who part as it is possible in the what part.