ACL: write access allowed based on a user specific attribute

15 Jul 2008


      Hello all OpenLDAP users,
I'm quite new to LDAP and I need to modify a currently existing LDAP
database.
There exist users in the database which can authentify, and I would like to
add a specific parameter on some of those users to enable write access to
them (for the moment they only have read access)
For example I currently have 2 users:
uid=user1,ou=Users,dc=myCompany,dc=fr
uid=user2,ou=Users,dc=myCompany,dc=fr
I changed my schema in order to be able to define an attribute admin="TRUE"
on user1. Now, I would like that only user1 could change anything in the
database, and not user2. How would I do that ?
Is it possible to define an ACL based on the attribute of a DN ?
Thanks
Francois MAROT

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

ACL: write access allowed based on a user specific attribute