[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ldap user management



On Tuesday 25 April 2006 16:00, Matthieu wrote:
> hello list
>
> I'm running a slapd 2.2.26 version.
> I've add some datas.
> For the moment, I have only two users. Adminstrator user, and a read user.
> I doesn't allow anonymous read acces.
> But now, I would like to add some others distinct read account with
> specific write acces on their own datas.
> I think that I should must add the following read and rights acccess in the
> server configuration file slapd.conf.
> But if I had more and more user, does I need to have each time theses
> rights in the server configuration file and restart the server ?


If you can make generic ACLs, by using something like "by self write", or by 
using groups, or by using regex- or set-based ACLs, you should not need to 
change the ACLs in slapd.conf.

> Or their is another way to add access rights in the server management?

If you don't succeed with standard, group, or regex- or set-based ACLs, you 
can use back-config, or (last resort) use ACIs.

Regards,
Buchan


-- 
Buchan Milne
ISP Systems Specialist
B.Eng,RHCE(803004789010797),LPIC-2(LPI000074592)

Attachment: pgpsLJW1Bc6PG.pgp
Description: PGP signature