That's all our nagios check script does. If you're finding that there are still differences in the contents of the directory even when contextCSN matches, then there's likely something else going on. At least, I've never seen the situation you describe in our production openldap cluster.
I think that a lot of our replication woes are the result of running some pretty ancient versions of OpenLDAP. I'm in the process right now of upgrading our LDAP infrastructure to use all new 2.4.25 installations (rather than the 2.3.43 version that's bundled with CentOS) and I'm thinking that a lot of our replication issues might vanish once that upgrade is complete.
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Tim Gustafson tjg@soe.ucsc.edu Baskin School of Engineering 831-459-5354 UC Santa Cruz Baskin Engineering 317B -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-