Skip Navigation Links | |
Exit Print View | |
![]() |
Oracle Directory Server Enterprise Edition Administration Guide 11g Release 1 (11.1.1.5.0) |
Part I Directory Server Administration
2. Directory Server Instances and Suffixes
3. Directory Server Configuration
Creating, Viewing, and Modifying ACIs
To Create, Modify, and Delete ACIs
To View ACIs at the Root Level
Permissions for Typical LDAP Operations
To Allow Normal Users to Manage User Accounts Using dsutil Command
Granting Write Access to Personal Entries
Granting Access to a Certain Level
Restricting Access to Key Roles
Granting a Role Full Access to an Entire Suffix
Granting a Group Full Access to a Suffix
Granting Rights to Add and Delete Group Entries
Allowing Users to Add or Remove Themselves From a Group
Granting Conditional Access to a Group or Role
Setting a Target Using Filtering
Defining Permissions for DNs That Contain a Comma
Restricting Access to the Get Effective Rights Control
Using the Get Effective Rights Control
Advanced Access Control: Using Macro ACIs
Matching for ($dn) in the Target
Substituting ($dn) in the Subject
Substituting [$dn] in the Subject
Macro Matching for ($attr.attrName)
Logging Access Control Information
Client-Host Access Control Through TCP Wrapping
7. Directory Server Password Policy
8. Directory Server Backup and Restore
9. Directory Server Groups, Roles, and CoS
10. Directory Server Replication
13. Directory Server Attribute Value Uniqueness
15. Directory Server Monitoring
Part II Directory Proxy Server Administration
16. Directory Proxy Server Tools
17. Directory Proxy Server Instances
19. Directory Proxy Server Certificates
20. Directory Proxy Server Load Balancing and Client Affinity
21. Directory Proxy Server Distribution
22. Directory Proxy Server Virtualization
23. Virtual Data Transformations
24. Connections Between Directory Proxy Server and Back-End LDAP Servers
25. Connections Between Clients and Directory Proxy Server
26. Directory Proxy Server Client Authentication
27. Directory Proxy Server Logging
28. Directory Proxy Server Monitoring and Alerts
Part III Directory Service Control Center Administration
The control of access to your directory is an integral part of creating a secure directory. This chapter describes access control instructions (ACIs) that determine which permissions are granted to users who access the directory.
While you are in the planning phase of your directory deployment, define an access control strategy that serves your overall security policy. See the Oracle Directory Server Enterprise Edition Deployment Planning Guide for tips on planning an access control strategy.
For additional information about ACIs, including ACI syntax and bind rules, see Oracle Directory Server Enterprise Edition Reference.
This chapter covers the following topics: