when adding an ACL to the default ACLS, [Entry Rights] doesnt seem to
work.

'1#subtree#[Self]#[Entry Rights]'

such as the following.

version: 1

dn: cn=schema
changetype: modify
delete: objectClasses
objectClasses: ( 2.5.6.9 )
-
add: objectClasses
objectClasses: ( 2.5.6.9 NAME ( 'groupOfNames' 'group'
'groupOfUniqueNames' ) SUP Top STRUCTURAL MUST cn MAY ( description $ l
$ member $ ou $ o $ owner $ seeAlso $ groupID $ fullName $ eMailAddress
$ mailboxLocation $ mailboxID $ Profile $ profileMembership $
loginScript $ businessCategory $ nspmPasswordPolicyDN ) X-NDS_NAMING
'cn' X-NDS_CONTAINMENT ( 'Organization' 'organizationalUnit' 'domain' )
X-NDS_NAME 'Group' X-NDS_NOT_CONTAINER '1' X-NDS_NONREMOVABLE '1'
X-NDS_ACL_TEMPLATES ( '3#subtree#[Self]#[All Attributes Rights]'
'1#subtree#[Self]#[Entry Rights]' '2#entry#[Root Template]#member' ) )


new object created after change to default ACL.

dn: cn=test3,ou=People,dc=xxxxx,dc=net
ACL: 3#subtree#cn=test3,ou=People,dc=xxxxx,dc=net#[All Attributes
Rights]
ACL: 2#entry#[Root]#member
cn: test3
objectClass: groupOfNames
objectClass: Top


--
Dieseloreo
------------------------------------------------------------------------
Dieseloreo's Profile: http://forums.novell.com/member.php?userid=36110
View this thread: http://forums.novell.com/showthread.php?t=449733