how does the authorization system work when using such an overlay ? can one write acl giving access to a user dn not in the directory ?
2007/2/2, Howard Chu <hyc@symas.com <mailto:hyc@symas.com>>:
In general, unless you actually need to perform all of the functions
of a
backend, you can usually get by with something much smaller - like
an overlay
that only intercepts Bind operations, or a password hash module in
this case.
-- -- Howard Chu Chief Architect, Symas Corp. http://www.symas.com Director, Highland Sun http://highlandsun.com/hyc Chief Architect, OpenLDAP http://www.openldap.org/project/