GroupOfUniqueNames in template.ldif must have uniqueMember

%rootdn% (Directory Manager) has all rights on every entry by nature. Thus, it is not needed to give any acis. This template has several groupOfUniqueNames objects which MUST have uniqueMember. At this moment, there is no entry which could be a uniqueMember. Just to satisfy the objectclass, set %rootdn% to uniqueMember of the objectclass.
author: Noriko Hosoi <nhosoi@redhat.com> 2009-07-31 13:39:24 -0700
committer: Noriko Hosoi <nhosoi@redhat.com> 2009-07-31 13:39:24 -0700
commit: 2d0bceab08f9dd3b1fce47a2bf2da1f78f70e216 (patch)
tree: 36a66901101e3ffce99e18906f218539f10aebc0
parent: dd31da50b1c09a22727640585fab39cf95ce2aa5 (diff)
download: ds-2d0bceab08f9dd3b1fce47a2bf2da1f78f70e216.tar.gz
ds-2d0bceab08f9dd3b1fce47a2bf2da1f78f70e216.tar.xz
ds-2d0bceab08f9dd3b1fce47a2bf2da1f78f70e216.zip
2 files changed, 13 insertions, 0 deletions
diff --git a/ldap/admin/src/scripts/dsorgentries.map.in b/ldap/admin/src/scripts/dsorgentries.map.in
index 2d59c226..e3688ec7 100644
--- a/ldap/admin/src/scripts/dsorgentries.map.in
+++ b/ldap/admin/src/scripts/dsorgentries.map.in
@@ -48,3 +48,4 @@
 # 
 ds_suffix =		Suffix
 naming_value =  naming_value
+rootdn =		RootDN
diff --git a/ldap/ldif/template.ldif b/ldap/ldif/template.ldif
index 6c083449..61876fc6 100644
--- a/ldap/ldif/template.ldif
+++ b/ldap/ldif/template.ldif
@@ -37,6 +37,13 @@
 # All rights reserved.
 # END COPYRIGHT BLOCK
 #
+#
+# Note: %rootdn% (Directory Manager) has all rights on every entry by nature.  
+# Thus, it is not needed to give any acis.  This template has several 
+# groupOfUniqueNames objects which MUST have uniqueMember.  At this moment,
+# there is no entry which could be a uniqueMember.  Just to satisfy the 
+# objectclass, set %rootdn% to uniqueMember of the objectclass.
+#
 dn: %ds_suffix%
 changetype: modify
 add: aci
@@ -48,6 +55,7 @@ dn: cn=Directory Administrators, %ds_suffix%
 objectClass: top
 objectClass: groupofuniquenames
 cn: Directory Administrators
+uniqueMember: %rootdn%
 
 dn: ou=Groups, %ds_suffix%
 objectclass: top
@@ -90,6 +98,7 @@ objectclass: groupOfUniqueNames
 cn: Accounting Managers
 ou: groups
 description: People who can manage accounting entries
+uniqueMember: %rootdn%
 
 dn: cn=HR Managers,ou=groups,%ds_suffix%
 objectclass: top
@@ -97,6 +106,7 @@ objectclass: groupOfUniqueNames
 cn: HR Managers
 ou: groups
 description: People who can manage HR entries
+uniqueMember: %rootdn%
 
 dn: cn=QA Managers,ou=groups,%ds_suffix%
 objectclass: top
@@ -104,6 +114,7 @@ objectclass: groupOfUniqueNames
 cn: QA Managers
 ou: groups
 description: People who can manage QA entries
+uniqueMember: %rootdn%
 
 dn: cn=PD Managers,ou=groups,%ds_suffix%
 objectclass: top
@@ -111,3 +122,4 @@ objectclass: groupOfUniqueNames
 cn: PD Managers
 ou: groups
 description: People who can manage engineer entries
+uniqueMember: %rootdn%
author	Noriko Hosoi <nhosoi@redhat.com>	2009-07-31 13:39:24 -0700
committer	Noriko Hosoi <nhosoi@redhat.com>	2009-07-31 13:39:24 -0700
commit	2d0bceab08f9dd3b1fce47a2bf2da1f78f70e216 (patch)
tree	36a66901101e3ffce99e18906f218539f10aebc0
parent	dd31da50b1c09a22727640585fab39cf95ce2aa5 (diff)
download	ds-2d0bceab08f9dd3b1fce47a2bf2da1f78f70e216.tar.gz ds-2d0bceab08f9dd3b1fce47a2bf2da1f78f70e216.tar.xz ds-2d0bceab08f9dd3b1fce47a2bf2da1f78f70e216.zip