Hello
I am new to ldap and ACL but I need to write an ACL that will prevent anonymous (cn=everyone?) users from viewing (read?) members of a certain group (e.g. cn=restricted_group,ou=groups,o=xxx) in their search/dump results. Any help or pointer to documentations is much appreciated. Thanks.
_________________________________________________________________ FREE pop-up blocking with the new MSN Toolbar - get it now! http://toolbar.msn.click-url.com/go/onm00200415ave/direct/01/
I am new to ldap and ACL but I need to write an ACL that will prevent anonymous (cn=everyone?) users from viewing (read?) members of a certain group (e.g. cn=restricted_group,ou=groups,o=xxx) in their search/dump results. Any help or pointer to documentations is much appreciated. Thanks.
Grant write and/or read access to authenticated "users" and anonymous users are implicitly denied access.
This is explained in the slapd-access man page. Be sure to use a man page appropriate to your version of OpenLDAP.
"Julius Squeezer" kriid@hotmail.com writes:
Hello
I am new to ldap and ACL but I need to write an ACL that will prevent anonymous (cn=everyone?) users from viewing (read?) members of a certain group (e.g. cn=restricted_group,ou=groups,o=xxx) in their search/dump results. Any help or pointer to documentations is much appreciated. Thanks.
man slapd.access(5) http://www.openldap.org/faq/data/cache/189.html
-Dieter
openldap-software@openldap.org
-
Adam Tauno Williams -
Dieter Kluenter -
Julius Squeezer