The command in this example could be used to hide some management information about a DSA definition stored within the directory.
set protected-items “hide-schema-from-employees” = { role = “employees” entry = <c “AU”><o “Democorp”><ou “Schema”> };
The specified entry is invisible to members of the employees role (unless a higher precedence access control rule grants them some access).
Copyright © 2011 CA. All rights reserved. | Email CA Technologies about this topic |