We have been able to run ldapsearchs that revealed what we consider private info on certain fields such as sambalmpassword, sambantpassword for example. Even though they are crypted we would like to restrict certain fields to directory managers and not anonymous searches. I believe this is what the aci's are for, but I am fuzzy on how this works. If someone could verify I would appreciate it and lead me in the right direction. We are trying to keep regular users from seeing these fields.
thanks David Hoskinson | DATATRAK International Systems Engineer Mayfield Heights, Ohio, USA +1.440.443.0082 x 124 (p) | +1.216.280.5457 (m) [email protected]<mailto:[email protected]> | www.datatrak.net<http://www.datatrak.net/>
-- 389 users mailing list [email protected] https://admin.fedoraproject.org/mailman/listinfo/389-users
