solution
This commit is contained in:
@@ -12,4 +12,6 @@ Mettre en place les acls permettant de protéger l'accès au champ userpassword
|
||||
|
||||
## Un exemple plus complet:
|
||||
|
||||
Mettre au point l'acl permettant à chaque utilisateur de modifier ses propres informations
|
||||
Mettre au point l'acl permettant à chaque utilisateur de modifier ses propres informations
|
||||
|
||||
👀 Voir le fichier _acl.ldif_
|
||||
22
acl.ldif
Normal file
22
acl.ldif
Normal file
@@ -0,0 +1,22 @@
|
||||
dn: olcDatabase={2}mdb,cn=config
|
||||
changetype: modify
|
||||
delete: olcAccess
|
||||
-
|
||||
add: olcAccess
|
||||
olcAccess: to attrs=userpassword,email by anonymous auth by self write by dn.sub=ou=services,dc=example,dc=fr read by * none
|
||||
-
|
||||
add: olcaccess
|
||||
olcAccess: to dn.sub=cn=policy,dc=example,dc=fr by * none
|
||||
-
|
||||
add: olcaccess
|
||||
olcAccess: to dn.sub=ou=services,dc=example,dc=fr by * none
|
||||
-
|
||||
add: olcaccess
|
||||
olcAccess: to dn.regex=uid=([^,]+),ou=users,dc=example,dc=fr
|
||||
by dn.exact,expand=uid=$1,ou=users,dc=example,dc=fr write
|
||||
by users read
|
||||
by * none
|
||||
-
|
||||
add: olcaccess
|
||||
olcaccess: to dn.sub=dc=example,dc=fr by users read by * none
|
||||
|
||||
Reference in New Issue
Block a user