How to Create a Group of Admin Users to Manage Users

(Doc ID 793379.1)

Last updated on JANUARY 09, 2018

Applies to:

Oracle Internet Directory - Version 10.1.2 and later
Information in this document applies to any platform.


The steps below address how to create a group of administrative user accounts which will have access to a set of users.

A privilege group will be created called "privgroup."  A single administrative user "irina3" will be added to it. The group will be given access to the cn=Users subtree and allow members of "privgroup" to view/modify the "mobile" and "departmentnumber" attributes for all users in that subtree. The admin users will also be prevented from deleting any user entries.

Demonstration of the functioning ACIs will be performed via the user "irina4."

These set of steps may be generalized to provide/prevent access to a larger set of attributes for any subtree.


Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms