[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Access control config revisited

To: openldap-software@OpenLDAP.org
Subject: Re: Access control config revisited
From: rickmesh01@netscape.net
Date: Mon, 29 Dec 2003 10:24:39 -0500

Tony Earnshaw <tonye@billy.demon.nl> wrote:

>man, 22.12.2003 kl. 22.43 skrev rickmesh01@netscape.net:
>
>> I have read message 199910/msg0007:RE:Access control config 
>> ( http://www.openldap.org/lists/openldap-software/199910/msg00006.html
>>  )
>
>Lousy line length, Rick. Do something about it?
>
>>  and on the surface it looks like how we need to set up our ldap
>>  server.  We want to set up a directory structure that allows for
>>  an admin person from each department to administer their own users.
>
>O.k.
>
>>  Our primary use will be for employee lookup (their email, phone
>>  number, etc.) and for user authentication.  But the example used
>>  a directory tree with traditional naming.  Could the same thing be
>>  accomplished using the internet naming directory tree structure?
>
>Just about everything's possible with LDAP. How about telling what rfc
>you mean by "the internet naming directory tree structure"?
>
>>  And
>>  if so what would the ACL for the admin account look like? 
>
>rfc?
>
>>  Which
>> structure is better for configuration, expandability, administration,
>>  searchability, etc.?
>
>See above.
>
>--Tonni
>
>-- 
>mail: billy - at - billy.demon.nl
>http://billy.demon.nl
>
>

Sorry I wasn't very clear.  I got the terms from the OpenLDAP
Admin User Guide 2.1 chapter 1.2.  I'm starting from the very
beginning.

I have looked at some of the rfc's but that stuff is thick.  
I have also looked at the O'Reilly book but the whole chapter
just on ACLs is not there.

I am saving the responses to other ACL questions to help me  
write my own ACLs.  But I am still unsure which directory tree
structure we should use.

-- 
Rick Meshberger
rickmesh01@netscape.net

__________________________________________________________________
New! Unlimited Access from the Netscape Internet Service.
Beta test the new Netscape Internet Service for only $1.00 per month until 3/1/04.
Sign up today at http://isp.netscape.com/register
Act now to get a personalized email address!

Netscape. Just the Net You Need.

Follow-Ups:
- Re: Access control config revisited
  - From: Tony Earnshaw <tonye@billy.demon.nl>

Prev by Date: RE: how to make local.schema
Next by Date: Does slapcat support large file?
Index(es):
- Chronological
- Thread