If im doing multi master replication, what privileges does the bind DN need? i know its bad practice to use the manager DN, does the binding user need write access to anything on the remote ldap tree or just full read access?
Thanks.
David.
David Markey wrote:
If im doing multi master replication, what privileges does the bind DN need? i know its bad practice to use the manager DN, does the binding user need write access to anything on the remote ldap tree or just full read access?
- auth privilege (of course); - read access to what needs to be replicated (might be less than full) - appropriate size/time limit (e.g. unlimited; see "limits")
p.
Ing. Pierangelo Masarati OpenLDAP Core Team
SysNet s.r.l. via Dossi, 8 - 27100 Pavia - ITALIA http://www.sys-net.it ----------------------------------- Office: +39 02 23998309 Mobile: +39 333 4963172 Fax: +39 0382 476497 Email: ando@sys-net.it -----------------------------------
openldap-software@openldap.org
-
David Markey -
Pierangelo Masarati