Hi,
I would like to hide a specific user attribute to everybody except for a specific group.
For that, I have created a delegation on an OU which define a :
- DENY option for "Read Mobile Number" and "Write Mobile Number" Applying for User objects.
ACL applied to a specific user (bsmith) for my test.
BUT, when I try to access the properties with bsmith account of an account that is member of the OU, this information is still visible.
Even if I define the "deny" ACL directly on a user account for bsmith; bsmith can always see the mobile number attribute.
Is it normal ?
How can I hide a specific user attribute and allow only his visibility for a specific group ?
Thank you