Hi David, My project doesn't require such requirement, we only need to restrict access on directory level only.
But according to Red Hat Directory Server documentation you should be able to restrict what attributes an user can see. Please see http://docs.redhat.com/docs/en-US/Red_Hat_Directory_Server/8.2/html/Deployment_Guide/Designing_a_Secure_Directory-Designing_Access_Control.html Good luck - dc 2011/11/8 David Hoskinson <[email protected]> > We have been able to run ldapsearchs that revealed what we consider > private info on certain fields such as sambalmpassword, sambantpassword for > example. Even though they are crypted we would like to restrict certain > fields to directory managers and not anonymous searches. I believe this is > what the aci’s are for, but I am fuzzy on how this works. If someone could > verify I would appreciate it and lead me in the right direction. We are > trying to keep regular users from seeing these fields.**** > > ** ** > > thanks**** > > ** ** > > David Hoskinson | *DATATRAK* International > Systems Engineer > Mayfield Heights, Ohio, USA > +1.440.443.0082 x 124 (p) | +1.216.280.5457 (m) > [email protected] | www.datatrak.net**** > > ** ** > > -- > 389 users mailing list > [email protected] > https://admin.fedoraproject.org/mailman/listinfo/389-users >
-- 389 users mailing list [email protected] https://admin.fedoraproject.org/mailman/listinfo/389-users
