Am Sun, 1 Jul 2018 14:35:27 +0200 schrieb Miroslav Misek miroslav.misek@netgarden.cz:
Hi,
I am setting up master-slave replication for our off-site office, so it can use authentication against ldap even with internet connectivity issues. Replication itself is working without problems. But it replicates only data and not olcAccess attributes on database. So I have to set them manually.
Please is there any way to replicate those attributes too?
I found only one way, and it is master-master replication of cn=config database. And it is not usable in our environment. Off-site office don`t have public ip. And it is better for me to have this ldap instance read-only.
You may consider the experimental aci model instead of stadard acl model, as defined in slapd.access(5) http://www.openldap.org/faq/data/cache/634.html
-Dieter