ACI “Billing Info Deny” (Sun Directory Server Enterprise Edition 7.0 Administration Guide)

Sun Directory Server Enterprise Edition 7.0 Administration Guide

Previous: ACI “Billing Info Read”
Next: Proxy Authorization

ACI “Billing Info Deny”

In LDIF, to deny subscribers permission to modify billing information in their own entry, you would write the following statement:

aci: (targetattr="connectionTime || accountBalance")
 (version 3.0; acl "Billing Info Deny";
 deny (write) userdn="ldap:///self";)

This example assumes that the relevant attributes have been created in the schema and that the ACI is added to the ou=subscribers,dc=example,dc=com entry.

Previous: ACI “Billing Info Read”
Next: Proxy Authorization