Hi
From the online doco re
Level Privileges Description none = 0 no access disclose = d needed for information disclosure on error auth = dx needed to authenticate (bind) compare = cdx needed to compare search = scdx needed to apply search filters read = rscdx needed to read search results write = wrscdx needed to modify/rename manage = mwrscdx needed to manage
I couldn't find out what the difference between manage and write is what does the M allow for.
olcAccess: to dn.subtree="ou=Users," by dn.exact="cn=directory,ou=Roles," manage by * break
so for the subtree ou=User
I want to allow cn=directory to add / modify / delete any children of ou=Users. Reading the doco its seems like I only need to give it write access, what can I do extra with manage ?
Also for userPassword attr to write to it do I need to have the read or can I just have =wd
Thanks Alex