16 Apr
2008
16 Apr
'08
5:22 a.m.
Hi,
"David Clarke" pigwin32@gmail.com writes:
Hello and apologies if I'm posting this in the wrong location.
I'm trying to apply some security to my openldap repository and I'm struggling with how or even if I can express a particular constraint.
[...]
What I would like to do is restrict the user to having read access only to those subsidiary organisations based on the value of the user's "o" attribute. Is this a reasonable approach or should I be expressing this differently in my schema?
Try access control by sets http://www.openldap.org/faq/data/cache/1133.html
-Dieter
--
Dieter Klünter | Systemberatung
http://www.dkluenter.de
GPG Key ID:8EF7B6C6