[Date Prev][Date Next] [Chronological] [Thread] [Top]

Consumer ACLs

To: openldap-technical@openldap.org
Subject: Consumer ACLs
From: Jaap Winius <jwinius@umrk.nl>
Date: Wed, 06 Jan 2010 00:45:12 +0100
Content-disposition: inline
User-agent: Internet Messaging Program (IMP) H3 (4.1.5)

Hi all,

A question regarding ACLs on OpenLDAP consumer servers. If the ACLs onthe provider give clients write access to some attributes, such asloginShell or userPassword, shouldn't the ACLs on the consumers do thesame?

I'm not sure about this, since consumer databases are alwaysread-only, but it seems to me that the clients would otherwise have noway of knowing that changing certain attributes was possible (via theupdateref option or the chain overlay).


Thanks,

Jaap

Follow-Ups:
- Re: Consumer ACLs
  - From: Buchan Milne <bgmilne@staff.telkomsa.net>

Prev by Date: Password Policy setting
Next by Date: Syncrepl with Kerberos support
Index(es):
- Chronological
- Thread