Hello Buchan,

Can I get an example for the ACL usage for the restriction

Thanks in advance,



 This e-mail and attachments contain confidential information from HUAWEI, which is intended only for the person or entity whose address is listed above. Any use of the information contained herein in any way (including, but not limited to, total or partial disclosure, reproduction, or dissemination) by persons other than the intended recipient's) is prohibited. If you receive this e-mail in error, please notify the sender by phone or email immediately and delete it!



-----Original Message-----
From: Buchan Milne [mailto:bgmilne@staff.telkomsa.net]
Sent: Monday, October 01, 2007 2:39 PM
To: openldap-software@openldap.org; arunachalamp@huawei.com
Subject: Re: restricting attributes to become RDN , which objects are created


On Saturday 29 September 2007 14:25:45 Arunachalam Parthasarathy wrote:

> Hello all,


> In objectclass, Is there a way to restrict (only) an attribute to be RDN?


> For ex: only uid needs to be RDN , in organizational Unit


Assuming you don't want this restriction to be applied to the rootdn (or, you

don't have the rootdn enabled), then you could quite easily achieve this with