| [ dn=regex ]
[ attrs=attrlist ]
who ::= | self | dn=regex | addr=regex
| domain=regex | dnattr=dn attribute
access ::= [self]none | [self]compare | [self]search
| [self]read | [self]write
Access to slapd entries and attributes is controlled by the access configuration file directive. The general form of an access line is as follows:
access directive ::= access to what
[ by who access ]+
what ::= | [ dn=regex ]
[ attrs=attrlist ]
who ::= | self | dn=regex | addr=regex
| domain=regex | dnattr=dn attribute
access ::= [self]none | [self]compare | [self]search
| [self]read | [self]write
The what part selects the entries and/or attributes to which
the access applies, the who part specifies which entities are
granted access, and the access part specifies the access granted.
Multiple who/access pairs are supported, allowing many
entities to be granted different access to the same set of entries and
attributes.