[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
ACLs by netgroup?
- To: OpenLDAP-software@OpenLDAP.org
- Subject: ACLs by netgroup?
- From: samuel gipe <sgipe@yahoo.com>
- Date: Fri, 3 Feb 2006 15:02:44 -0800 (PST)
- Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=Message-ID:Received:Date:From:Subject:To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=MBmvauJFAn1OcO9iBJ/NlMwzfajv3l9daSBFiUV616ByGqRhXIuGYGo9i3jxVxbE+bUKUqZb2LvoR9LFYqeACZVzjIFXSkMQuVfEZvk2ePybCqYq/akNCjL8on6FeVYo9Y9dtsn5TllMjisaXRr0z3xCmN+6DYf+h7RLOBHVoHo= ;
Hi All,
Using the ldap search filter terminology (rfc 2254), is it possible to return
the dn of each uid specified in a given netgroup?
I am trying to designate a slapd.conf ACL which allows one to write the
userPassword and shadowLastChange field of members of the given netgroups.
Ultimately, I would like to allow managers to change the passwords of their
reports (who are listed in netgroups).
Generally, is it possible to define the "to what" portion of ACLs via
netgroups.
Things I've done prior to mailing include but are not limited to: man
slapd.conf, man slapd.access, reading the Oreilly book, reading rfc2254,
experimentation.
thanks
sam
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com