I'm writing a small script which will scan all the users and check if each
one has setup an OTP. It will send out an email to the user if OTP is

I added a new entry
* uid=otp-check-ro,cn=sysaccounts,cn=etc,dc=example,dc=com*. Problem is I'm
able to read all the users attributes but not able to read anything under
*cn=otp,dc=example,dc=com* tree.

What are the permissions or ACI I need to add to give read-only access to
this user?

Manage your subscription for the Freeipa-users mailing list:
Go to http://freeipa.org for more info on the project

Reply via email to