Re: [EXT] Re: Re: Re: Re: Re: using refint overlay for pwdPolicySubentry

9 Jun 2025


      On Mon, Jun 02, 2025 at 09:58:14AM +0000, Windl, Ulrich wrote:
...
Hi!
Sorry for the length delay. I tested again:

I copied a policy and assigned that copy to a user
then I renamed that copied pppolicy to a new name
searching the server I see that the pwdPolicySubentry attribute is
updated

The confusing part is that I find the rename in accesslog, but not the
attribute change.
Of course, the rename triggered an attribute change on the other
replicated node as well, but I would find it more consistent if the
change done by refint were reflected in the accesslog (and be
replicated that way).
Maybe it's my fault to use the accesslog to see all changes applied to
the local database...
Hi Ulrich,
as documented, refint-initiated operations are not meant to be
replicated, you are supposed to configure refint on each replica. That
includes they cannot be logged in accesslog either.
Regards,
-- 
Ondřej Kuzník
Senior Software Engineer
Symas Corporation                       http://www.symas.com
Packaged, certified, and supported LDAP solutions powered by OpenLDAP

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

Re: [EXT] Re: Re: Re: Re: Re: using refint overlay for pwdPolicySubentry