<html><head><metahttp-equiv="Content-Type"content="text/html; charset=ISO-8859-1"><title>Chapter<EFBFBD>1.<2E>Self service</title><linkrel="stylesheet"href="style.css"type="text/css"><metaname="generator"content="DocBook XSL Stylesheets V1.73.2"><linkrel="start"href="index.html"title="LDAP Account Manager Pro - HowTo"><linkrel="up"href="index.html"title="LDAP Account Manager Pro - HowTo"><linkrel="prev"href="index.html"title="LDAP Account Manager Pro - HowTo"><linkrel="next"href="ch01s02.html"title="Creating a self service profile"></head><bodybgcolor="white"text="black"link="#0000FF"vlink="#840084"alink="#0000FF"><divclass="navheader"><tablewidth="100%"summary="Navigation header"><tr><thcolspan="3"align="center">Chapter<EFBFBD>1.<2E>Self service</th></tr><tr><tdwidth="20%"align="left"><aaccesskey="p"href="index.html">Prev</a><EFBFBD></td><thwidth="60%"align="center"><EFBFBD></th><tdwidth="20%"align="right"><EFBFBD><aaccesskey="n"href="ch01s02.html">Next</a></td></tr></table><hr></div><divclass="chapter"lang="en"><divclass="titlepage"><div><div><h2class="title"><aname="id2545086"></a>Chapter<EFBFBD>1.<2E>Self service</h2></div></div></div><divclass="toc"><p><b>Table of Contents</b></p><dl><dt><spanclass="section"><ahref="ch01.html#id2521335">Preparations</a></span></dt><dd><dl><dt><spanclass="section"><ahref="ch01.html#id2545108">OpenLDAP ACLs</a></span></dt><dt><spanclass="section"><ahref="ch01.html#id2545172">Other LDAP servers</a></span></dt></dl></dd><dt><spanclass="section"><ahref="ch01s02.html">Creating a self service profile</a></span></dt><dt><spanclass="section"><ahref="ch01s03.html">Edit your new profile</a></span></dt></dl></div><divclass="section"lang="en"><divclass="titlepage"><div><div><h2class="title"style="clear: both"><aname="id2521335"></a>Preparations</h2></div></div></div><divclass="section"lang="en"><divclass="titlepage"><div><div><h3class="title"><aname="id2545108"></a>OpenLDAP ACLs</h3></div></div></div><p>By default only a few administrative users have write access to
the LDAP database. Before your users may change their settings you
must allow them to change their LDAP data.</p><p>This can be done by adding an ACL to your slapd.conf which looks
like this:</p><p><spanclass="bold"><strong>access to</strong></span></p><p><spanclass="bold"><strong>
attrs=mail,sn,givenName,telephoneNumber,mobile,facsimileTelephoneNumber,street,postalAddress,postOfficeBox,postalCode,password</strong></span></p><p><spanclass="bold"><strong> by self write</strong></span></p><p>If you do not want them to change all attributes then reduce the
list to fit your needs. Some modules may require additional LDAP
attributes.</p><p>Usually, the slapd.conf file is located in /etc/ldap or
/etc/openldap.</p></div><divclass="section"lang="en"><divclass="titlepage"><div><div><h3class="title"><aname="id2545172"></a>Other LDAP servers</h3></div></div></div><p>There exist many LDAP implementations. If you do not use
OpenLDAP you need to write your own ACLs. Please check the manual of
your LDAP server for instructions.</p></div></div></div><divclass="navfooter"><hr><tablewidth="100%"summary="Navigation footer"><tr><tdwidth="40%"align="left"><aaccesskey="p"href="index.html">Prev</a><EFBFBD></td><tdwidth="20%"align="center"><EFBFBD></td><tdwidth="40%"align="right"><EFBFBD><aaccesskey="n"href="ch01s02.html">Next</a></td></tr><tr><tdwidth="40%"align="left"valign="top">LDAP Account Manager Pro - HowTo<54></td><tdwidth="20%"align="center"><aaccesskey="h"href="index.html">Home</a></td><tdwidth="40%"align="right"valign="top"><EFBFBD>Creating a self service profile</td></tr></table></div></body></html>