[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: Access control

To: "'Quanah Gibson-Mount'" <quanah@stanford.edu>, "'John Borwick'" <borwicjh@wfu.edu>, "'Digant C Kasundra'" <digant@uta.edu>
Subject: RE: Access control
From: "Howard Chu" <hyc@highlandsun.com>
Date: Tue, 25 May 2004 15:48:31 -0700
Cc: <openldap-software@OpenLDAP.org>
Importance: Normal
In-reply-to: <DED28B33FD801B8990847FA0@cadabra-dsl.stanford.edu>

> -----Original Message-----
> From: owner-openldap-software@OpenLDAP.org
> [mailto:owner-openldap-software@OpenLDAP.org]On Behalf Of Quanah
> Gibson-Mount

> > For others: does the "group" specification used here
> respect "memberOf"?
>
> In 2.2, another possibility would to be create a dynamic group who's
> members are determined by userPrivs=admin, and just give that
> group write access.

Of course you could define a dynamic group that used a "memberOf" attribute
if you really wanted. Not sure that one term is any more clear than the
other.

  -- Howard Chu
  Chief Architect, Symas Corp.       Director, Highland Sun
  http://www.symas.com               http://highlandsun.com/hyc
  Symas: Premier OpenSource Development and Support

References:
- Re: Access control
  - From: Quanah Gibson-Mount <quanah@stanford.edu>

Prev by Date: Re: Using OpenLDAP schema syntax rules in web form validation
Next by Date: Re: ldapsearch output
Index(es):
- Chronological
- Thread