HP-UX Directory Server Administrator Guide HP-UX Directory Server Version 8.1 (5900-3098, May 2013)

NOTE:

The nsRoleDN attribute is an operational attribute and must be explicitly requested in the search

command in the list of search attributes. For example:

ldapsearch ... args ... “(uid=scarter)” \* nsRole nsRoleDN

The Console will automatically show the nsRoleDN attribute.

5.1.2.2 Creating a filtered role

Entries are assigned to a filtered role depending whether the entry possesses a specific attribute

defined in the role. The role definition specifies an LDAP filter for the target attributes. Entries that

match the filter possess (are members of) the role.

To create and add members to a filtered role:

1. In the Directory Server Console, select the Directory tab.

2. Browse the tree in the left navigation pane, and select the parent entry for the new role.

3. Go to the Object menu, and select New→Role.

Alternatively, right-click the entry and select New→Role.

4. Click General in the left pane. Type a name for the new role in the Role Name field. The role

name is required.

5.1 Using roles 171