dsconfig set-access-control-handler-prop — Modifies Access Control Handler properties
dsconfig set-access-control-handler-prop
{options}
The dsconfig set-access-control-handler-prop command takes the following options:
--set {PROP:VALUE}
Assigns a value to a property where PROP is the name of the property and VALUE is the single value to be assigned. Specify the same property multiple times in order to assign more than one value to it.
Access Control Handler properties depend on the Access Control Handler type, which depends on the null option.
--reset {property}
Resets a property back to its default values where PROP is the name of the property to be reset.
Access Control Handler properties depend on the Access Control Handler type, which depends on the null option.
--add {PROP:VALUE}
Adds a single value to a property where PROP is the name of the property and VALUE is the single value to be added.
Access Control Handler properties depend on the Access Control Handler type, which depends on the null option.
--remove {PROP:VALUE}
Removes a single value from a property where PROP is the name of the property and VALUE is the single value to be removed.
Access Control Handler properties depend on the Access Control Handler type, which depends on the null option.
Access Control Handlers of type dsee-compat-access-control-handler have the following properties:
Indicates whether the Access Control Handler is enabled. If set to FALSE, then no access control is enforced, and any client (including unauthenticated or anonymous clients) could be allowed to perform any operation if not subject to other restrictions, such as those enforced by the privilege subsystem.
None
true
false
No
Yes
None
No
No
Defines global access control rules. Global access control rules apply to all entries anywhere in the data managed by the OpenDJ directory server. The global access control rules may be overridden by more specific access control rules placed in the data.
No global access control rules are defined, which means that no access is allowed for any data in the server unless specifically granted by access control rules in the data.
????
Yes
No
None
No
No
Specifies the fully-qualified name of the Java class that provides the Dsee Compat Access Control Handler implementation.
org.opends.server.authorization.dseecompat.AciHandler
A Java class that implements or extends the class(es): org.opends.server.api.AccessControlHandler
No
Yes
The Access Control Handler must be disabled and re-enabled for changes to this setting to take effect
Yes (Use --advanced in interactive mode.)
No