Hi All,
I need to modify an aci for a user using the command line. The user is not in any group. The user is under ou=people,o=organization,dc=xxx,dc=com.
Here's the aci I wrote. Could somebody tell me if this is right?
ldapmodify -h servername -p 123 -D "cn=directory manager" -w password
dn: uid=xxxx,ou=People,dc=xxx,dc=com
changetype: modify
add: aci
aci:(target=”ldap:///o=organization,dc=xxx,dc=com”)(targetattr=”userpassword”)(version x; acl “ Deny Password Change”; deny(write) roledn=”ldap:///uid=xxxx,dc=xxx,dc=com”;)
Thanks