[Fedora-directory-users] How is access control done?
Pete Rowley
pete at openrowley.com
Wed Oct 19 00:39:02 UTC 2005
> -----Original Message-----
> From: fedora-directory-users-bounces at redhat.com
> [mailto:fedora-directory-users-bounces at redhat.com] On Behalf
> Of speedy zinc
> Sent: Tuesday, October 18, 2005 5:28 PM
> To: General discussion list for the Fedora Directory server project.
> Subject: Re: [Fedora-directory-users] How is access control done?
>
> directory, or can I just add the new schema, and tell the
> server that the new attributes are now allowed in
> inetOrgPerson/Person/posixAccount/etc?
You _can_ do that but it highly discouraged. Schema (particularly standard
schema) is intended to remain static so that all clients know what they are
dealing with.
>
> The important thing is, I don't want to rebuild anything, not
> to interrupt any service.
>
You can create new schema for an auxillary objectclass that represents your
application and add that objectclass to the users that need it.
> I see there are quite a few of Netscape schema, for specific
> apps, such as Collabra Server, etc. How do I add app-specific
> schema like that without rebuilding the directory? Or do I
> have to rebuild it everytime a new schema is added?
As mentioned above, simply add the objectclass to an existing user entry.
You should never have to rebuild anything.
More information about the Fedora-directory-users
mailing list