On Sat, Mar 7, 2009 at 1:49 AM, Howard Chu <[email protected]> wrote: > > access to dn.exact="ou=group,dc=domain" attrs=children > by users write > access to dn.regex="cn=(.*):.*,ou=group,dc=domain" > by set.expand="$1 & user/uid" write > > You'll also need to use OpenLDAP 2.4.13 or newer, to control who can add > entries. (See slapd-config(5), olcAddContentAcl)
Excellent. This works perfectly with 2.4.15 Thanks for all the help. --andy
