PLANNING
Use the database ACL to control the general access that users and HCL Domino® servers have to the Domino Directory. Optionally, use an extended ACL to refine the general database ACL and further restrict access to specific portions of the directory. An extended ACL is available for only a Domino Directory and an extended directory catalog.
Some of the questions to ask when planning directory access control include:
Do you want to assign administrators to specific administration roles in the Domino Directory?
The Anonymous entry in the directory database ACL by default is set to No Access and controls anonymous access for all users other than LDAP users. If you use an extended ACL, then the Anonymous entry in database ACL, and the extended ACL, then also control anonymous LDAP access. Typically you give the Anonymous entry no more than Reader access.
Related concepts Extended ACL Planning directory services Directory services terms
Related tasks Controlling access to the Domino Directory