mirror of
https://salsa.debian.org/freeipa-team/freeipa.git
synced 2025-01-02 12:16:56 -06:00
5 lines
246 B
Plaintext
5 lines
246 B
Plaintext
|
# Don't allow managed netgroups to be modified
|
||
|
|
dn: cn=ng,cn=alt,$SUFFIX
|
||
|
|
add:aci: '(targetfilter = "(objectClass=mepManagedEntry)")(targetattr = "*")(version 3.0; acl "Managed netgroups cannot be modified"; deny (write) userdn = "ldap:///all";)'
|
||
|
|
|