Hello, I’m trying to write an ACI that limits the objectClass values a user can add to an entry.
Specifically, I only want the user to be able to add or remove… objectClass=top objectClass=person objectClass=organizationalPerson objectClass=inetOrgPerson The user should also be able to add or remove all other attribute types allowed by the above object classes. Any recommendations on how to accomplish this? Best regards, Mike Przybylski
