Full_Name: Andre Cardinal Version: 2.4.30 OS: Red Hat 5 URL: ftp://ftp.openldap.org/incoming/ Submission from: (NULL) (206.47.249.246)

I have the following ACL set up in slapd.conf

access to dn.base="" by * read access to attrs=GCSRAAllow,GCSRAGroup,GCSRASubjectdn,userpassword by dn="cn=ProvAdmin,ou=GCSRAAdmin,o=gc,c=ca" write by dn="cn=gateAdmin1,ou=GCSRAAdmin,o=gc,c=ca" read by dn="cn=gateAdmin2,ou=GCSRAAdmin,o=gc,c=ca" read

slapacl -f /usr/local/etc/openldap/slapd.conf -D cn=provadmin,ou=gcsraadmin,o=gc,c=ca -b ou=gcsrausers,o=gc,c=ca gcsraallow authcDN: "cn=provadmin,ou=gcsraadmin,o=gc,c=ca"

GCSRAAllow: write(=wrscxd)

However any modify I try returns:

modifying entry "GCSRASubjectDN=my636-test,ou=GCSRAUsers,o=gc,c=ca" ldap_modify: Insufficient access (50)