Basic ACL question...I think.

Hi, I'm new to ACL creation.

We have a fully functional ldap server implementation that is working quite well for user auth.

What I'm trying to do is set up my ldap server so that when a specific host binds using a particular DN, that host only sees specific entries in the ou=People tree, so that getent, id, nss, pam, etc only recognizes those users.

Is this possible? I'm stumped. Thanks.

Ken Kleiner System Manager University of Massachusetts Lowell Computer Science Department 978 934 3645