Page created: 26 Jul 2021
|
Page updated: 18 Jul 2023
DSEE provides limited support for restricting access to controls and extended operations.
To the extent that you can control access to controls and extended operations with access
control instructions (ACIs), DSEE defines entries with a distinguished name (DN), such as
oid={oid},cn=features,cn=config
, where {oid}
is the
OID of the associated control or extended operation. For example, the following DSEE entry
defines ACIs for the persistent search control.
oid=2.16.840.1.113730.3.4.3,cn=features,cn=config
In the Server, you can use the
targetcontrol
keyword to define ACIs that grant or deny access to
controls. You can use the extop
keyword to define ACIs that grant or deny
access to extended operation requests.