[Freeipa-users] access control
Günther J. Niederwimmer
gjn at gjn.priv.at
Sun Jul 19 15:58:53 UTC 2015
Hello,
can any help me to create a access control for a user?
Background:
I have created a user like this from a FreeIPA site
# ldapmodify -x -D 'cn=Directory Manager' -W
dn: uid=system,cn=sysaccounts,cn=etc,dc=example,dc=com
changetype: add
objectclass: account
objectclass: simplesecurityobject
uid: system
userPassword: secret123
passwordExpirationTime: 20380119031407Z
nsIdleTimeout: 0
<blank line>
^D
now I have to create a access control rule for this user that he can read
the userPassword atribute like this?
# access to attribute=userPassword
# by dn="<dovecot's dn>" read # add this
# by anonymous auth
# by self write
# by * none
I can't found a example for this Problem and so I have no correct working
Mailserver :-(.
Please Help and tanks for a answer.
--
mit freundlichen Grüssen / best regards,
Günther J. Niederwimmer
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20150719/2630348b/attachment.htm>
More information about the Freeipa-users
mailing list