Hi Gunther, Typically one would use the freeipa tools to create users.
http://docs.fedoraproject.org/en-US/Fedora/15/html/FreeIPA_Guide/managing-users.html#adding-users As with any application. Modifying the database underneath is not recommended. Thanks, Andrew On 19 July 2015 at 17:58, Günther J. <g...@gjn.priv.at> wrote: > Hello, > > > > can any help me to create a access control for a user? > > > > Background: > > I have created a user like this from a FreeIPA site > > > > # ldapmodify -x -D 'cn=Directory Manager' -W > > dn: uid=system,cn=sysaccounts,cn=etc,dc=example,dc=com > > changetype: add > > objectclass: account > > objectclass: simplesecurityobject > > uid: system > > userPassword: secret123 > > passwordExpirationTime: 20380119031407Z > > nsIdleTimeout: 0 > > <blank line> > > ^D > > now I have to create a access control rule for this user that he can read > the userPassword atribute like this? > > > > > > # access to attribute=userPassword > > # by dn="<dovecot's dn>" read # add this > > # by anonymous auth > > # by self write > > # by * none > > > > > > I can't found a example for this Problem and so I have no correct working > Mailserver :-(. > > > > Please Help and tanks for a answer. > > -- > > mit freundlichen Grüssen / best regards, > > > > Günther J. Niederwimmer > > -- > Manage your subscription for the Freeipa-users mailing list: > https://www.redhat.com/mailman/listinfo/freeipa-users > Go to http://freeipa.org for more info on the project >
-- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go to http://freeipa.org for more info on the project