Each access control rule is a command in a configuration file. When a DSA starts, it reads its configuration files, and applies the settings it finds.
Note: You can not enter control rules directly in the CA Directory console.
To set up access control rules
Super users have unrestricted read and update access to all parts of the DSA.
To set access controls for super users, use the command set super-user.
Administrative users typically have read and update privileges over a specified directory subtree.
To set access controls for administrative users, use the command set admin-user.
Protected items take away privileges from registered users and public users.
To set access controls for protected items, use the command set protected-items.
Registered users typically have read access to a specified subtree.
To set access controls for registered users, use the command set reg-user.
Public (anonymous) users typically have read-only access to a specified subtree.
To set access controls for public users, use the command set public-user.
Copyright © 2010 CA. All rights reserved. | Email CA about this topic |