to add/delete/modify right should be granted per user so it would be like
access to dn.regex="ou=Adressbooks,ou=username_AddressBook,dc=domain,dc=tld"
by anonymous none
by self write
by dn.regex="firstname.lastname@example.org,ou=Users,domainName=tld,o=domains,dc=domain,dc=tld" write
For managing, it's not a problem to script it, to add the the addressbook for all existing users, and delete addressbook under user deletion process.
I know that those clients support it, the problem is that once I create even hard coded definition like mentioned above, somehow I can not authenticate, it doesn't let me.