diff options
Diffstat (limited to 'ldap/ldif/template.ldif')
-rw-r--r-- | ldap/ldif/template.ldif | 34 |
1 files changed, 16 insertions, 18 deletions
diff --git a/ldap/ldif/template.ldif b/ldap/ldif/template.ldif index a0ab7914..6c083449 100644 --- a/ldap/ldif/template.ldif +++ b/ldap/ldif/template.ldif @@ -37,26 +37,24 @@ # All rights reserved. # END COPYRIGHT BLOCK # -dn: %%%SUFFIX%%% -objectclass: top -aci: (targetattr ="*")(version 3.0; - acl "Configuration Administrators Group";allow (all) (groupdn = "ldap:/// - cn=Configuration Administrators, ou=Groups, ou=TopologyManagement, o=NetscapeRoot");) +dn: %ds_suffix% +changetype: modify +add: aci aci: (targetattr ="*")(version 3.0; acl "Directory Administrators Group";allow (all) (groupdn = "ldap:/// - cn=Directory Administrators, %%%SUFFIX%%%");) + cn=Directory Administrators, %ds_suffix%");) -dn: cn=Directory Administrators, %%%SUFFIX%%% +dn: cn=Directory Administrators, %ds_suffix% objectClass: top objectClass: groupofuniquenames cn: Directory Administrators -dn: ou=Groups, %%%SUFFIX%%% +dn: ou=Groups, %ds_suffix% objectclass: top objectclass: organizationalunit ou: Groups -dn: ou=People, %%%SUFFIX%%% +dn: ou=People, %ds_suffix% objectclass: top objectclass: organizationalunit ou: People @@ -66,48 +64,48 @@ aci: (targetattr ="userpassword || te aci: (targetattr !="cn || sn || uid")(t argetfilter ="(ou=Accounting)")(version 3.0;acl "Accounting Managers G roup Permissions";allow (write)(groupdn = "ldap:///cn=Accounting Managers,ou - =groups,%%%SUFFIX%%%");) + =groups,%ds_suffix%");) aci: (targetattr !="cn || sn || uid")(t argetfilter ="(ou=Human Resources)")(version 3.0;acl "HR Group Permiss - ions";allow (write)(groupdn = "ldap:///cn=HR Managers,ou=groups,%%%SUFFIX%%% + ions";allow (write)(groupdn = "ldap:///cn=HR Managers,ou=groups,%ds_suffix% ");) aci: (targetattr !="cn ||sn || uid")(t argetfilter ="(ou=Product Testing)")(version 3.0;acl "QA Group Permiss - ions";allow (write)(groupdn = "ldap:///cn=QA Managers,ou=groups,%%%SUFFIX%%% + ions";allow (write)(groupdn = "ldap:///cn=QA Managers,ou=groups,%ds_suffix% ");) aci: (targetattr !="cn || sn || uid")(t argetfilter ="(ou=Product Development)")(version 3.0;acl "Engineering Group Permissions";allow (write)(groupdn = "ldap:///cn=PD Managers,ou=groups - ,%%%SUFFIX%%%");) + ,%ds_suffix%");) -dn: ou=Special Users,%%%SUFFIX%%% +dn: ou=Special Users,%ds_suffix% objectclass: top objectclass: organizationalUnit ou: Special Users description: Special Administrative Accounts -dn: cn=Accounting Managers,ou=groups,%%%SUFFIX%%% +dn: cn=Accounting Managers,ou=groups,%ds_suffix% objectclass: top objectclass: groupOfUniqueNames cn: Accounting Managers ou: groups description: People who can manage accounting entries -dn: cn=HR Managers,ou=groups,%%%SUFFIX%%% +dn: cn=HR Managers,ou=groups,%ds_suffix% objectclass: top objectclass: groupOfUniqueNames cn: HR Managers ou: groups description: People who can manage HR entries -dn: cn=QA Managers,ou=groups,%%%SUFFIX%%% +dn: cn=QA Managers,ou=groups,%ds_suffix% objectclass: top objectclass: groupOfUniqueNames cn: QA Managers ou: groups description: People who can manage QA entries -dn: cn=PD Managers,ou=groups,%%%SUFFIX%%% +dn: cn=PD Managers,ou=groups,%ds_suffix% objectclass: top objectclass: groupOfUniqueNames cn: PD Managers |