diff options
-rw-r--r-- | modules/openldap/templates/mandriva-dit-access.conf | 6 |
1 files changed, 5 insertions, 1 deletions
diff --git a/modules/openldap/templates/mandriva-dit-access.conf b/modules/openldap/templates/mandriva-dit-access.conf index 7283fcac..347edcdb 100644 --- a/modules/openldap/templates/mandriva-dit-access.conf +++ b/modules/openldap/templates/mandriva-dit-access.conf @@ -83,7 +83,11 @@ access to dn.subtree="dc=mageia,dc=org" access to dn.regex="^cn=[^,]+,ou=(System Groups|Group),dc=mageia,dc=org$" attrs=member by dnattr=owner write - by * break + by users +sx + +access to dn.regex="^cn=[^,]+,ou=(System Groups|Group),dc=mageia,dc=org$" + attrs=cn,description + by users read # registration - allow registrar group to create basic unprivileged accounts access to dn.subtree="ou=People,dc=mageia,dc=org" |