Static roles are an extension of static groups. Static roles let you control access to the directory itself, using groups in the directory.
To use static roles, you first need to set up static groups and then configure the roles.
When a user logs in to a directory with static roles, the following happens:
These roles are used in decisions about access controls and other role-specific configuration items.
If an access control or other configuration item is set for the whole DSA and for a user's role, the more generous setting applies to that user.
If you change the value of a role-based configuration item, the new value does not apply to users that are currently logged in. After they have logged out and back in again, the new settings apply.
Copyright © 2009 CA. All rights reserved. | Email CA about this topic |