Limiting access to controls and extended operations - PingDirectoryProxy - PingDirectory

Limiting access to controls and extended operations - PingDirectoryProxy - PingDirectory - 9.0

PingDirectory

bundle

pingdirectory-90

ft:publication_title

PingDirectory

Product_Version_ce

PingDirectory 9.0

category

Product

pd-90

pingdirectory

ContentType_ce

Page created: 26 Jul 2021 |

Page updated: 18 Jul 2023

| 1 min read

9.0 Product PingDirectory Directory Capability Product documentation Content Type Administration User task IT Administrator Administrator Audience Software Deployment Method PingDirectoryProxy

DSEE provides limited support for restricting access to controls and extended operations.

To the extent that you can control access to controls and extended operations with access control instructions (ACIs), DSEE defines entries with a distinguished name (DN), such as oid={oid},cn=features,cn=config, where {oid} is the OID of the associated control or extended operation. For example, the following DSEE entry defines ACIs for the persistent search control.

oid=2.16.840.1.113730.3.4.3,cn=features,cn=config

In the Server, you can use the targetcontrol keyword to define ACIs that grant or deny access to controls. You can use the extop keyword to define ACIs that grant or deny access to extended operation requests.