David Markey wrote:
If im doing multi master replication, what privileges does the bind DN need? i know its bad practice to use the manager DN, does the binding user need write access to anything on the remote ldap tree or just full read access?
- auth privilege (of course); - read access to what needs to be replicated (might be less than full) - appropriate size/time limit (e.g. unlimited; see "limits")
p.
Ing. Pierangelo Masarati OpenLDAP Core Team
SysNet s.r.l. via Dossi, 8 - 27100 Pavia - ITALIA http://www.sys-net.it ----------------------------------- Office: +39 02 23998309 Mobile: +39 333 4963172 Fax: +39 0382 476497 Email: ando@sys-net.it -----------------------------------