How to Create a Group of Admin Users to Manage Users (Doc ID 793379.1)

Last updated on JULY 01, 2016

Applies to:

Oracle Internet Directory - Version: 10.1.2 to 10.1.4 - Release: 10gR2 to 10gR3

Goal

The steps below address how to create a group of administrative user accounts which will have access to a set of users.

A privilege group will be created called "privgroup."  A single administrative user "irina3" will be added to it. The group will be given access to the cn=Users subtree and allow members of "privgroup" to view/modify the "mobile" and "departmentnumber" attributes for all users in that subtree. The admin users will also be prevented from deleting any user entries.

Demonstration of the functioning ACIs will be performed via the user "irina4."

These set of steps may be generalized to provide/prevent access to a larger set of attributes for any subtree.

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms