On 02/06/2014 05:23 AM, Jan Tomasek wrote:
Hello,
I need user to be able to add subentry bellow his own entry.
In this structure:
dc=cz
ou=People
uid=test1
dc=123 ??
uid=test2
How to write ACI that test1 could add only under his own entry? Sadly
(target = "ldap:///self";) is not permited.
Any idea how to write ACI at level of ou=People?
Currently this can not be done. Of course you can add an individual aci
to each user to allow this, but I know that's not what your looking for.
There is some similar work being done in
https://fedorahosted.org/389/ticket/47653
--
Mark Reynolds
389 Development Team
Red Hat, Inc
mreynolds@xxxxxxxxxx
--
389 users mailing list
389-users@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/389-users
