With a little side of applesauce...

Monday, April 28, 2008

OpenLDAP - no dynamic groups

Interesting blog post this:
http://www.odecee.com.au/blogs/?p=11
-- snip
A simple solution to this problem is in the use of dynamic groups. One small problem though, a dynamic group is only a concept and, technically speaking, cannot be modeled in OpenLDAP, eTrust and IBM Directory Server. Therefore, dynamic groups functionality must be built into the application security architecture.
-- end snip

1 comment:

Gavin Henry said...

Wrong, you can easily do Dynamic Groups in OpenLDAP, both in the directory and for use in ACLs.