Re: ACL construction : by group

8 Oct 2009


      On Thu, Oct 8, 2009 at 12:06, Florian Götz f.goetz@hs-mannheim.de wrote:
...
access to dn.subtree="ou=Groups,dc=example,dc=de"
       by group="cn=Domain Admins,ou=groups,dc=example,dc=de" write
The "by group" ACL requires the members to be DNs.
...
Is there a possibility to use the existing "Domain Admins" group for user
authentication, even if there are only memberUids stored and not complete dn?
You can use sets, at the expense of some performance (I don't know how
large of a performance penalty, though).
See the examples of the admin guide:
http://www.openldap.org/doc/admin24/access-control.html#Group%20ACLs%20witho...

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

Re: ACL construction : by group