Novell eDirectory - Full Service Directory

Security: Qualification

Provides multiple levels of access to directory information.

A full service directory must provide differing levels of access to corporate information depending on the access rights of the individual. Qualification determines the extent of information that each person can access. An anonymous user would only be able to access minimal information in a directory, while an authenticated user could access more information pursuant to their rights. The Novell eDirectory full-service directory can qualify access based on the authenticated identity.

Example:

In this example the [Public] trustee (anonymous user) has limited access (browse rights) to the directory without being authenticated to the tree. The Admin user has Supervisor rights to the tree which give entire rights to the directory. The Help Desk Group only has enough rights to manage user passwords. Therefore, access can be defined for different levels of users in the directory.