I think there is a bug in openldap, because I could solve this issue just putting in my slapd.conf:
limits anonymous size.soft=50 size.hard=100 size.unchecked=32767 time.soft=15 time.hard=60 sizelimit unlimited
As you can see, I have to put "sizelimit unlimited" for all users, it is bad.
This follow configuration doesn't work for me either:
limits dn.exact="cn=replicator,dc=domain,dc=com" size.soft=unlimited size.hard=unlimited size.unchecked=unlimited time.soft=unlimited time.hard=unlimited limits users size.soft=50 size.hard=100 limits anonymous size.soft=50 size.hard=50
Citando Howard Chu hyc@symas.com:
Brett @Google wrote:
Why dont you try :
limits dn.exact="uid=syncrepl,ou=System,dc=example,dc=com" size=unlimited time=unlimited
As a test on the provider, maybe your group is not being expanded as you expect.
Group syntax seen elsewhere in this list have looked is more like :
The group syntax is already documented in slapd.conf(5). No need to tell what it's "sort of like as seen on this list" - tell precisely what it is.
limits group/groupOfUniqueNames/uniqueMember="cn=LDAPAdmins,ou=Groups,dc=example,dc=com" size=unlimited time=unlimited
As noted in slapd.conf(5) the default objectclass and attribute are groupOfNames and member, respectively. groupOfUniqueNames and uniqueMember are totally bogus in LDAP.
I'd suggest trying the test again with the dn.exact one first, and if that works then try the other.
-- -- Howard Chu CTO, Symas Corp. http://www.symas.com Director, Highland Sun http://highlandsun.com/hyc/ Chief Architect, OpenLDAP http://www.openldap.org/project/