Full_Name: Ralf Haferkamp Version: HEAD, RE24 OS: URL: ftp://ftp.openldap.org/incoming/ Submission from: (NULL) (89.166.241.48) Submitted by: ralf

By default, if no ACLs are defined for back-config, back-config creates default ACL to deny access to everybody (see config_back_db_open() in bconfig.c), instead of just using the global ACLs as other backends do. If however an overlay in configured for cn=config (e.g. syncprov) this default-deny ACL is not present.

I am currently working on a fix for this.