9 Jul
2008
9 Jul
'08
7:08 a.m.
Hi,
Vladimir Dzhuvinov vd@valan.net writes:
Hello,
I had a look at the OpenLDAP docs and it looks like it isn't possible to define access based on an attribute value of a bound user. Is this correct?
I use slapd version 2.4.9 (Debian/Linux).
This is possible by defining sets http://www.openldap.org/faq/data/cache/1133.html
something like access to dn.regex="cn=([^,]),dc=example,dc=com$" by set.regex="[cn=$1,dc=example,dc=com /attribute type & [attribute value]"
-Dieter
--
Dieter Klünter | Systemberatung
http://www.dkluenter.de
GPG Key ID:8EF7B6C6
53°08'09,95"N
10°08'02,42"E