[Date Prev][Date Next] [Chronological] [Thread] [Top]

acl fun



Primary LDAP server - posixAccount/sambaSamAccount logins 

I'm trying to secure things - does this make sense?
Is there a better way that I might learn something from this?

access to dn=".*,o=Domain,c=US" attr=userPassword
by dn="cn=root,o=Domain,c=US" write
by dn="cn=admin,ou=People,o=Domain,c=US" write
by users write

access to dn="ou=People,o=Domain,c=US"
by dn="cn=root,o=Domain,c=US" write
by dn="cn=admin,ou=People,o=Domain,c=US" write
by self write

access to dn="uid=*,ou=People,o=Domain,c=US"
by dn="cn=root,o=Domain,c=US" write
by dn="cn=admin,ou=People,o=Domain,c=US" write
by users write

access to dn="ou=Groups,o=Domain,c=US"
by dn="cn=root,o=Domain,c=US" write
by dn="cn=admin,ou=People,o=Domain,c=US" write

access to dn="ou=Computers,o=Domain,c=US"
by dn="cn=root,o=Domain,c=US" write
by dn="cn=admin,ou=People,o=Domain,c=US" write

access to dn=".*,o=Domain,c=US"
by * none

Thanks
Craig