[Freeipa-devel] objectclass updated by user
Rob Crittenden
rcritten at redhat.com
Mon Feb 18 21:46:45 UTC 2008
We let the IPA admin determine which objectclasses should appear in an
entry by default and when a user is updated or added these are synced.
There is a problem with self-service though. If this list has changed
and the user needs to add the new objectclass(es) it will fail because
currently they don't have write access to this attribute of their record.
So what do we want to do? Not update OC on self-service or grant write
access to this attribute?
The former is slightly more work than the former but still in the doable
range.
rob
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3245 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20080218/5724f040/attachment.bin>
More information about the Freeipa-devel
mailing list