Access Control Usage Examples
252
Red Hat Directory Server Administrator’s Guide • May 2005
1.
In the Directory tab, right click the
example.com-people
entry under the
example.com
node in the left navigation tree, and choose Set Access
Permissions from the pop-up menu to display the Access Control Manager.
2.
Click New to display the Access Control Editor.
3.
In the Users/Groups tab, in the ACI name field, type
HR
. In the list of users
granted access permission, do the following:
a.
Select and remove All Users, then click Add.
The Add Users and Groups dialog box is displayed.
b.
Set the Search area to Users and Groups, and type “HRgroup” in the
Search for field.
This example assumes that you have created an HR group or role. For
more information on groups and roles, see chapter 5, “Advanced Entry
Management.”
c.
Click the Add button to list the HR group in the list of users who are
granted access permission.
d.
Click OK to dismiss the Add Users and Groups dialog box.
4.
In the Rights tab, click the Check All button.
All checkboxes are ticked, except for Proxy rights.
5.
Click OK.
The new ACI is added to the ones listed in the Access Control Manager
window.
Granting Rights to Add and Delete Group Entries
Some organizations want to allow employees to create entries in the tree if it can
increase their efficiency or if it can contribute to the corporate dynamics.
At
example.com
for example, there is an active social committee that is organized
into various clubs: tennis, swimming, skiing, role-playing, etc. Any
example.com
employee can create a group entry representing a new club. This is illustrated in
the ACI “Create Group” example. Any
example.com
employee can become a
member of one of these groups. This is illustrated in ACI “Group Members”
under “Allowing Users to Add or Remove Themselves from a Group,” on
page 260. Only the group owner can modify or delete a group entry. This is
illustrated in the ACI “Delete Group” example.
Summary of Contents for DIRECTORY SERVER 7.1
Page 1: ...Administrator s Guide Red Hat Directory Server Version7 1 May 2005 Updated February 2009 ...
Page 20: ...20 Red Hat Directory Server Administrator s Guide May 2005 Glossary 619 Index 635 ...
Page 22: ...22 Red Hat Directory Server Administrator s Guide May 2005 ...
Page 26: ...26 Red Hat Directory Server Administrator s Guide May 2005 ...
Page 78: ...Maintaining Referential Integrity 78 Red Hat Directory Server Administrator s Guide May 2005 ...
Page 200: ...Assigning Class of Service 200 Red Hat Directory Server Administrator s Guide May 2005 ...
Page 488: ...488 Red Hat Directory Server Administrator s Guide May 2005 ...
Page 528: ...PTA Plug in Syntax Examples 528 Red Hat Directory Server Administrator s Guide May 2005 ...
Page 572: ...572 Red Hat Directory Server Administrator s Guide May 2005 ...
Page 612: ...Examples of LDAP URLs 612 Red Hat Directory Server Administrator s Guide May 2005 ...
Page 634: ...634 Red Hat Directory Server Administrator s Guide May 2005 ...