Frankly, you probably also don't need:
scope=sub
My own (scrubbed) synrepl statement: syncrepl rid=1 provider=ldaps://ldapmaster1.example.net type=refreshAndPersist interval=00:00:10:00 searchbase="dc=example,dc=net" bindmethod=simple binddn="cn=LDAPRoot,example,dc=net" credentials="seekrit" retry="15 20 60 +"
Which is used as part of a mirrored master; the slaves are similarly configured - everything syncs great.
The LDAPRoot account listed has access to everything - as the name would suggest.
- chris
-----Original Message----- From: openldap-technical-bounces@OpenLDAP.org [mailto:openldap-technical-bounces@OpenLDAP.org] On Behalf Of Quanah Gibson-Mount Sent: Monday, October 25, 2010 9:09 AM To: Robert Klopotoski, Jr.; Jonathan CLARKE Cc: openldap-technical@openldap.org Subject: Re: Syncrepl not replicating userPassword
--On Monday, October 25, 2010 11:59 AM -0400 "Robert Klopotoski, Jr." rklopoto@endicott.edu wrote:
This is wrong:
attrs="*"
You should not specify the attrs field at all unless you know what you're doing. Just accept the default which is "*,+", I.e., operational + all other attributes.
--Quanah
--
Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc -------------------- Zimbra :: the leader in open source messaging and collaboration
This message is private and confidential. If you have received it in error, please notify the sender and remove it from your system.