Last updated on JULY 01, 2016
Applies to:Oracle Internet Directory - Version: 10.1.2 to 10.1.4 - Release: 10gR2 to 10gR3
A privilege group will be created called "privgroup." A single administrative user "irina3" will be added to it. The group will be given access to the cn=Users subtree and allow members of "privgroup" to view/modify the "mobile" and "departmentnumber" attributes for all users in that subtree. The admin users will also be prevented from deleting any user entries.
Demonstration of the functioning ACIs will be performed via the user "irina4."
These set of steps may be generalized to provide/prevent access to a larger set of attributes for any subtree.
Sign In with your My Oracle Support account
Don't have a My Oracle Support account? Click to get started
Million Knowledge Articles and hundreds of Community platforms