Access Control Usage ExamplesChapter 6 Managing Access Control 2611. In the Directory tab, right click the example-people entry under theexample.com node in the left navigation tree, and choose Set AccessPermissions from the pop-up menu to display the Access Control Manager.2. Click New to display the Access Control Editor.3. In the Users/Groups tab, in the ACI name field, type Group Members. In thelist of users granted access permission, do the following:a. Select and remove All Users, then click Add.The Add Users and Groups dialog box is displayed.b. Set the Search area in the Add Users and Groups dialog box to to SpecialRights, and select All Authenticated Users from the Search results list.c. Click the Add button to list All Authenticated Users in the list of users whoare granted access permission.d. Click OK to dismiss the Add Users and Groups dialog box.4. In the Rights tab, tick the checkbox for selfwrite. Make sure the othercheckboxes are clear.5. In the Targets tab, type dc=example,dc=com suffix in the target directory entryfield. In the attribute table, tick the checkbox for the member attribute.All other checkboxes should be clear. This task is made easier if you click theCheck None button to clear the checkoxes for all attributes in the table, thenclick the Name header to organize them alphabetically, and select theappropriate ones.6. Click OK.The new ACI is added to the ones listed in the Access Control Managerwindow.Defining Permissions for DNs That Contain aCommaDNs that contain commas require special treatement within your LDIF ACIstatements. In the target and bind rule portions of the ACI statement, commas mustbe escaped by a single backslash (\). The following example illustrates this syntax:
