Univention Bugzilla – Bug 57133
Feature-Request: OU/CN restrictions
Last modified: 2024-03-11 13:53:01 CET
It should be useful in greater environments if you can define which objects you can create in a ou/cn. Example: I'll create a cn like users and in this cn i can only create user objects. In reverse in this cn i can't create a computer object.
Thanks for this request! From my understanding the Guardian is already capable of being able to create capability that (dis-)allows certain object types from being created if their superordinate matches a certain condition (as long as that information is present at the object to be created), which means that this is something that needs to be implemented in the application managing objects which then might use the Guardian to achieve this -> I guess UDM makes the most sense for the time being.