[Date Prev][Date Next] [Chronological] [Thread] [Top]

ACL: user who can just create but not delete entries

To: openldap-technical@openldap.org
Subject: ACL: user who can just create but not delete entries
From: "Stefano Zanmarchi" <zanmarchi@gmail.com>
Date: Thu, 21 Aug 2008 14:02:09 +0200
Content-disposition: inline

Hi,
I'd like to create a special user ("cn=useradmin,dc=myorg,dc=com")
whose task would be creating new entries under "ou=people,dc=myorg,dc=com".

My problem is that useradmin will be used by a not completely trusted
application.
Can I prevent useradmin from deleting or modifying entries under
"ou=people,dc=myorg,dc=com"?

Thank you very much for your help,
Stefano

Follow-Ups:
- Re: ACL: user who can just create but not delete entries
  - From: "Dieter Kluenter" <dieter@dkluenter.de>

Prev by Date: Re: LDAP lookup problem
Next by Date: Windows AD --> Linux/OpenLDAP
Index(es):
- Chronological
- Thread