[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: Ldap Services Permission
- Subject: Re: Ldap Services Permission
- From: Andre Luis Fogagnoli <andre@bastion.com.br>
- Date: Wed, 01 Oct 2003 11:05:42 -0300
- Cc: List-OpenLdap <openldap-software@OpenLDAP.org>
- In-reply-to: <20030929193517.GR26258@conectiva.com.br>
- References: <1064862001.3044.14.camel@romanza.intranet.bastion> <20030929193517.GR26258@conectiva.com.br>
Thanks for your answer,
But how I specify in LDAP what services the user can or can't use. You
tell me that application will have to check the permission, how I check,
and how I put in LDAP what services the user can use, with one entry??
Thanks again.
On Mon, 2003-09-29 at 16:35, Andreas wrote:
> On Mon, Sep 29, 2003 at 04:00:01PM -0300, Andre Luis Fogagnoli wrote:
> > Does anyone know how to setup a permission in LDAP for a services in my
> > computer. For example, one user have permission to login but not to
> > webmail, or another user have permission to login and use a webmail.
>
> Your application will have to check that. For example, your webmail should
> check with the ldap server if that user is allowed to access the webmail
> service.
>
> In this case, ldap will just be a repository of information, it's up to
> the applications to make use of it.
>
> One exception is for services which use pam_ldap, you could play with
> the "host" attribute I guess, but I never used it so I wouldn't know
> exactly how fine grained this is.
--
---------------------------
Andre Luis Fogagnoli
Bastion Security Systems
http://www.bastion.com.br
tel://+55.11.5049.0100