Friday, September 9, 2022

[389-users] Re: How to have more than 1 directory manager account?

Hi Pierre,

One solution is to add an user then add an aci in dn=example,dn=com to allow this user to add entries. Something like:
aci: (targetattr = "*")(version 3.0; aci "user access for xxx script; allow(
 all) userdn="ldap:///uid=someone,ou=people,dc=exmaple,dc=people";)

    Pierre Rogier

On Fri, Sep 9, 2022 at 3:52 PM Pierre Girard <> wrote:


                I looked around and so far I didn't find information on how to add an additional directory manager account.


                Or maybe there's a way to create an account that can add entries to dn=example,dn=com, since that would be more limited.

The goal is to have an account that will be different for scripts that we'll be writing to add information in the server.


Any guide on how to do that?






389-users mailing list --
To unsubscribe send an email to
Fedora Code of Conduct:
List Guidelines:
List Archives:
Do not reply to spam, report it:


389 Directory Server Development Team

No comments:

Post a Comment