Josh Miller wrote:
> m.roth2006@(protected):
>>
>>  
> Try this instead:
>
> access to attrs=userPassword
>     by self write
>     by anonymous auth
>   by * none
>
> access to *         # all attributes except entries listed above
>     by * read     # anybody can read it
>     by anonymous auth
>                
>
>
Also, shadowLastChange is an internal attribute and should NOT appear in
your ACL.

HTH,
Josh, RHCE

--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@(protected)
https://www.redhat.com/mailman/listinfo/redhat-list