Novell Home

Using DirXML to Create ACLs for SecureLogin

Novell Cool Solutions: Tip
By Uffe Bager

Digg This - Slashdot This

Posted: 29 Oct 2004
 

Here's a tip sent in by Cool Solutions reader Uffe Bager on using DirXML to create the ACL for SecureLogin. Keep those tips rolling in (and the free T-shirts rolling out ...)

Problem

Some admins manage their users in NT/AD. If you do, but if you are using SecureLogin for Single Sign-On, then the rights for the SecureLogin attributes are not automatically created. This means that the newly created users will not be able to use SecureLogin until the you run NDSSCHEMA.EXE to assign the rights to new users.

Solution

You don't have to keep re-running NDSSCHEMA.EXE to assign new-user rights. Just let DirXML create the ACLs for the SecureLogin Attributes when a new user is created. Modify the script below as necessary and add it to your Publisher Command Transform. This will create the ACLs for SecureLogin 3.x.

XML Stylesheet Example


<xsl:template match="add[@class-name='user']">
  <xsl:copy>
    <xsl:apply-templates select="@*"/>
      <add-attr attr-name="ACL">
        <value type="structured">
          <component name="protectedName">Prot:SSO Entry</component>
        <component name="trustee">\[Self]</component>
        <component name="privileges">15</component>
      </value>
      <value type="structured">
          <component name="protectedName">Prot:SSO Auth</component>
          <component name="trustee">\[Self]</component>
          <component name="privileges">15</component>
      </value>
      <value type="structured">
        <component name="protectedName">Prot:SSO Security Prefs</component>
        <component name="trustee">\[Self]</component>
        <component name="privileges">15</component>
        </value>
        <value type="structured">
          <component name="protectedName">Prot:SSO Entry Checksum</component>
          <component name="trustee">\[Self]</component>
          <component name="privileges">15</component>
        </value>
      <value type="structured">
        <component name="protectedName">Prot:SSO Security Checksum</component>
        <component name="trustee">\[Self]</component>
        <component name="privileges">15</component>
      </value>
    </add-attr>
  </xsl:copy>
</xsl:template>


Novell Cool Solutions (corporate web communities) are produced by WebWise Solutions. www.webwiseone.com

© 2014 Novell