masarati(a)aero.polimi.it wrote: I modified my test perl script to exit if adding the entry failed, albeit a preceding delete should have removed it. Then I manually ran ldapsearch -D "rootdn" ... -b "TestBaseDN" -MM "cn=TestEntry" I got ==== 8>< ========================== [...] # with manageDSAit critical control [...] dn: cn=TestEntry,TestBaseDN objectClass: inetOrgPerson description: oldValue [...] # search result search: 2 result: 0 Success # numResponses: 2 # numEntries: 1 ==== 8>< ========================== I do see attributes reflecting state after "modify" (which changes "sn" attribute). Where exactly should I expect to see a note about "glue state"? Is output from "-d Any" helpful to figure what's going on (or wrong)? -- Regards, Peter