diff options
author | Simo Sorce <ssorce@redhat.com> | 2010-12-11 11:02:08 -0500 |
---|---|---|
committer | Simo Sorce <ssorce@redhat.com> | 2010-12-21 17:28:13 -0500 |
commit | 5884fdf0f864d67fe7ee48d29f3c023882bc2891 (patch) | |
tree | a4e48a0aeff41ead46e0a4e693d27da6f58b63e8 /install/share/replica-acis.ldif | |
parent | 2cb53ec8d0271c8db0f09203fdc60878a66cbdb6 (diff) | |
download | freeipa-5884fdf0f864d67fe7ee48d29f3c023882bc2891.tar.gz freeipa-5884fdf0f864d67fe7ee48d29f3c023882bc2891.tar.xz freeipa-5884fdf0f864d67fe7ee48d29f3c023882bc2891.zip |
Add replication related acis to all replicas
Fixes: https://fedorahosted.org/freeipa/ticket/617
Diffstat (limited to 'install/share/replica-acis.ldif')
-rw-r--r-- | install/share/replica-acis.ldif | 11 |
1 files changed, 11 insertions, 0 deletions
diff --git a/install/share/replica-acis.ldif b/install/share/replica-acis.ldif new file mode 100644 index 000000000..5ee65dacb --- /dev/null +++ b/install/share/replica-acis.ldif @@ -0,0 +1,11 @@ +# Replica administration + +dn: cn="$SUFFIX",cn=mapping tree,cn=config +changetype: modify +add: aci +aci: (targetattr=*)(targetfilter="(|(objectclass=nsds5Replica)(objectclass=nsds5replicationagreement)(objectclass=nsDSWindowsReplicationAgreement))")(version 3.0; acl "Manage Replication Agreements"; allow (read, write, search) groupdn = "ldap:///cn=managereplica,cn=permissions,cn=accounts,$SUFFIX";) + +dn: cn="$SUFFIX",cn=mapping tree,cn=config +changetype: modify +add: aci +aci: (targetattr=*)(targetfilter="(|(objectclass=nsds5replicationagreement)(objectclass=nsDSWindowsReplicationAgreement))")(version 3.0;acl "Delete Replication Agreements";allow (delete) groupdn = "ldap:///cn=deletereplica,cn=permissions,cn=accounts,$SUFFIX";) |