On Fri, Jul 03, 2015 at 10:53:54AM -0400, Simo Sorce wrote:
> On Sat, 2015-07-04 at 00:32 +1000, Fraser Tweedale wrote:
> > On Wed, Jul 01, 2015 at 04:06:11PM +1000, Fraser Tweedale wrote:
> > > Hi everyone,
> > >
> > > With the addition of CA ACLs, there are now two levels of
> > > permissions ch
On Sat, 2015-07-04 at 00:32 +1000, Fraser Tweedale wrote:
> On Wed, Jul 01, 2015 at 04:06:11PM +1000, Fraser Tweedale wrote:
> > Hi everyone,
> >
> > With the addition of CA ACLs, there are now two levels of
> > permissions checked by the `cert-request' command:
> >
> > - LDAP permission checks.
On Wed, Jul 01, 2015 at 04:06:11PM +1000, Fraser Tweedale wrote:
> Hi everyone,
>
> With the addition of CA ACLs, there are now two levels of
> permissions checked by the `cert-request' command:
>
> - LDAP permission checks. This check is performed against the bind
> principal; `admin' has per
