-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi Abosch,
On 21.09.2012 13:37, Angel Bosch wrote: > I would like to give modification permissions to some mid-level > managers to allow them change attributes of users belonging to > specific groups. access rights should always be set on LDAP level (e.g. ACLs in slapd.conf for OpenLDAP). You might want to take a look at the "Dynamic Lists" overlay to make group memberships visible in your user entries as basis for ACLs. http://www.openldap.org/doc/admin24/overlays.html > what is the best way to do that? > > do i need to create a profile for every manager? Probably not. If you control the access rights via LDAP ACLs then all managers can use the same LAM server profile. They will see all users but may only edit some of them. - -- Best regards Roland LDAP Account Manager http://www.ldap-account-manager.org/ Want more? Get LDAP Account Manager Pro! http://www.ldap-account-manager.org/lamcms/lamPro -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAlBdwpgACgkQq/ywNCsrGZ5MYQCcCOQLjydTrLWN6Rf8VRgnEXNY p4QAn0tPVQrL3BLeROCfOAS6gNqLuHhw =GeBL -----END PGP SIGNATURE----- ------------------------------------------------------------------------------ How fast is your code? 3 out of 4 devs don\\\'t know how their code performs in production. Find out how slow your code is with AppDynamics Lite. http://ad.doubleclick.net/clk;262219672;13503038;z? http://info.appdynamics.com/FreeJavaPerformanceDownload.html _______________________________________________ Lam-public mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/lam-public
