Show Table of Contents
18.3. ACI Structure
The
aci attribute uses the following syntax:
(target_rule) (version 3.0; acl "ACL_name"; permission_rule bind_rules;)
target_rulespecifies the entry, attributes, or set of entries and attributes for which to control access. For details, see Section 18.11, “Defining Targets”.version 3.0is a required string which identifies the ACI version.permission_rulesets what rights, such asreadorwrite, are allowed or denied. For details, see Section 18.12, “Defining Permissions”.bind_rulesspecifies which rules must match during the bind to allow or deny access. For details, see Section 18.13, “Defining Bind Rules”.
Note
The permission and the bind rule pair are called an access control rule.
To efficiently set multiple access controls for a given target, you can set multiple access control rules for each target:
(target_rule)(version 3.0; acl "ACL_name"; permission_rule bind_rules; permission_rule bind_rules; ... ;)
Where did the comment section go?
Red Hat's documentation publication system recently went through an upgrade to enable speedier, more mobile-friendly content. We decided to re-evaluate our commenting platform to ensure that it meets your expectations and serves as an optimal feedback mechanism. During this redesign, we invite your input on providing feedback on Red Hat documentation via the discussion platform.