[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: help with ACL

To: Alberto Aldrigo <alberto.aldrigo@h-farm.com>, openldap-technical@openldap.org
Subject: Re: help with ACL
From: Quanah Gibson-Mount <quanah@symas.com>
Date: Fri, 06 Jan 2017 09:01:24 -0800
Content-disposition: inline
In-reply-to: <WM!01d7f960631065cd473b6fbcb5ec1a54e3db1116887942eb31c8b209f1f3c992ade64cbd7187e502c1a95bab67806f7e!@mailstronghold-1.zmailcloud.com>
References: <adcf6cbc-38fe-695a-5d78-afa05713d809@h-farm.com> <WM!da077f5557c42edd6609a6f7b10963a8f189269b0cf55413d47be155c94a3caa5ce8becfde23e45772864dc62d721a16!@mailstronghold-1.zmailcloud.com> <EF365D39EDCA14CA604DD2DD@[192.168.1.30]> <61a7cad6-4537-9225-7ae0-fbd80430fd67@h-farm.com> <WM!01d7f960631065cd473b6fbcb5ec1a54e3db1116887942eb31c8b209f1f3c992ade64cbd7187e502c1a95bab67806f7e!@mailstronghold-1.zmailcloud.com>

--On Wednesday, January 04, 2017 2:44 PM +0100 Alberto Aldrigo<alberto.aldrigo@h-farm.com> wrote:

So an ACL could be:

to dn.subtree="o=company1,dc=domain,dc=com" by group="c
cn=admins_company1,o=company1,dc=domain,dc=com" write

I have 25 of these groups, so I need 25 ACLs like the one above: having
one per line can lead to a performance issue?


Generally it should be fine, as it's not a particularly complex ACL.

--Quanah


--

Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>

References:
- Re: help with ACL
  - From: Alberto Aldrigo <alberto.aldrigo@h-farm.com>

Prev by Date: Re: Syncrepl and multipe values
Next by Date: Re: Syncrepl and multipe values
Index(es):
- Chronological
- Thread