You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@directory.apache.org by Mike Przybylski <mi...@gimmethebrain.net> on 2014/01/12 20:38:17 UTC

[ApacheDS] ACI limiting allowed objectClass values?

Hello,

I’m trying to write an ACI that limits the objectClass values a user can add to an entry.

Specifically, I only want the user to be able to add or remove…

objectClass=top
objectClass=person
objectClass=organizationalPerson
objectClass=inetOrgPerson

The user should also be able to add or remove all other attribute types allowed by the above object classes.

Any recommendations on how to accomplish this?

Best regards,
Mike Przybylski