acl

1. dn: olcDatabase={-1}frontend,cn=config
2. olcAccess: {0}to *  by dn.exact="cn=admin,cn=config" write  by * break
3. olcAccess: {1}to dn.base=""  by * read
4. olcAccess: {2}to dn.base="cn=subschema"  by * read
5.  
6. dn: olcDatabase={0}config,cn=config
7. olcAccess: {0}to *  by * none
8.  
9. dn: olcDatabase={1}mdb,cn=config
10. olcAccess: to attrs=userPassword
11.   by dn.exact="cn=replica,dc=entreprise,dc=com" read
12.   by dn.exact="cn=dummy,dc=entreprise,dc=com" read
13.   by self write
14.   by anonymous auth
15. olcAccess: to attrs=shadowLastChange
16.   by dn.exact="cn=replica,dc=entreprise,dc=com" read
17.   by dn.exact="cn=dummy,dc=entreprise,dc=com" read
18.   by self write
19.   by * read
20. olcAccess: to attrs=uid,cn,mail,memberUid,gidNumber,uniqueMember
21.   by dn.exact="cn=replica,dc=entreprise,dc=com" read
22.   by dn.exact="cn=dummy,dc=entreprise,dc=com" read
23.   by users read
24. olcAccess: to dn.children="ou=People,dc=entreprise,dc=com"
25.   by dn.exact="cn=replica,dc=entreprise,dc=com" read
26.   by dn.exact="cn=dummy,dc=entreprise,dc=com" read
27.   by self write
28.   by * break
29. olcAccess: to dn.children="cn=Nagios,ou=Servicios,dc=entreprise,dc=com"
30.   by dn.exact="cn=replica,dc=entreprise,dc=com" read
31.   by dn.exact="cn=dummy,dc=entreprise,dc=com" read
32.   by anonymous auth
33. olcAccess: to attrs=member,uid
34.   by dn.exact="cn=replica,dc=entreprise,dc=com" read
35.   by dn.exact="cn=dummy,dc=entreprise,dc=com" read
36.   by users read
37.   by anonymous auth
38. olcAccess: to *
39.   by dn.exact="cn=replica,dc=entreprise,dc=com" read
40.   by dn.exact="cn=dummy,dc=entreprise,dc=com" read
41.   by * read
42.  
43. dn: olcDatabase={2}monitor,cn=config
44. olcAccess: {0}to * by dn="cn=admin,cn=config" read
45.  
46. ########################################
47.  
48. dn: dc=entreprise,dc=com
49. objectClass: top
50. objectClass: dcObject
51. objectClass: organization
52. o: entreprise.com
53. dc: entreprise
54.  
55. dn: ou=People,dc=entreprise,dc=com
56. objectClass: top
57. objectClass: organizationalUnit
58. ou: People
59. description: Usuarios BD
60.  
61. dn: ou=Groups,dc=entreprise,dc=com
62. objectClass: top
63. objectClass: organizationalUnit
64. ou: Groups
65.  
66. dn: ou=DHCP Servers,dc=entreprise,dc=com
67. objectClass: top
68. objectClass: organizationalUnit
69. ou: DHCP Servers
70.  
71. dn: ou=UIDs,dc=entreprise,dc=com
72. objectClass: top
73. objectClass: organizationalUnit
74. ou: UIDs
75.  
76. dn: ou=Servicios,dc=entreprise,dc=com
77. objectClass: top
78. objectClass: organizationalUnit
79. ou: Servicios
80.  
81. dn: cn=Nagios,ou=Servicios,dc=entreprise,dc=com
82. objectClass: top
83. objectClass: groupOfNames
84. cn: Nagios
85.  
86. dn: cn=DHCP,ou=Servicios,dc=entreprise,dc=com
87. objectClass: top
88. objectClass: groupOfNames
89. cn: DHCP
90.  
91. dn: cn=replica,dc=entreprise,dc=com
92. cn: replica
93. objectClass: simpleSecurityObject
94. objectClass: organizationalRole
95. description: LDAP synchronisator
96.  
97. dn: cn=dummy,dc=entreprise,dc=com
98. cn: dummy
99. objectClass: simpleSecurityObject
100. objectClass: organizationalRole
101. description: LDAP administrator