Which allowed services can be defined (imap, pop3, etc.)

[Steffen Kaiser]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Tue, 6 Jun 2017, Malte Schmidt wrote:

> pass_filter = (&(objectClass=posixAccount)(uid=%u)(service=%s))
>
> Thats pretty cool. Now, in the LDAP-settings I created corresponding
> fields (service) and added the allowed services to tthese fields (imap,
> pop3, etc.).
> After that change, certain services were not available to that user
> anymore. So it seems that more services are there and after explicitly
> setting the services which are allowed, the other, not mentioned
> services stop to work.
>

> Is it possible to "flip" that setting so its not allowing certain
> services but denying the ones that are added to the "service"-fields?

(!(service=%s))

or better name this attribute

deniedService

- -- 
Steffen Kaiser
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iQEVAwUBWTarunz1H7kL/d9rAQJS8gf8CMBPSi99lYOKNQMou/pxXvVAwmJg74Qt
rNjHAK3w8G3NoIlSReSYdBURtL6vN6z3iY2cmY7XYFuV5cz/SK2itVIYF20KvhaS
R8I4m2AP087AQeC1AAAyErca5fiC9fzKLg3VRugTs/lCiZ0YQnp/d5LvJ5B5XxAW
8j7L76roTOj2o6YM6n1AfyGoYH6sRE2cMwZmEknteZO6rxMYJFqYv503fGEnKXz1
gKp7J5Ug25TEJLHIMNwEj3EZcJ33us75TZ7GTZB3CrEotvzaPzZVQKIvBmDEx3PO
lwKB45X5L4lZil9BSWMtrO7nGb+OxL3/IcbolYBZ3KawjD5W7JYHDQ==
=agQv
-----END PGP SIGNATURE-----