Ciao kumar,

A fully working example, configurable with ansible with delta syncrepl ready to go, for studies and prototyping, Is here:

https://github.com/peppelinux/ansible-slapd-eduperson2016

Run as It come in a container, for a replica node see delta repl readme,

Have fun and don't give up

Il lun 15 giu 2020, 21:29 Quanah Gibson-Mount <quanah@symas.com> ha scritto:


--On Monday, June 15, 2020 8:05 PM +0000 Kumar Rahul
<rahul2002mit@gmail.com> wrote:

> dn: olcDatabase={1}mdb,cn=config
> objectClass: olcMdbConfig
> olcDatabase: {1}mdb
> olcDbDirectory: /usr/local/var/openldap-data/data_db
> olcSuffix: dc=smartsan
> olcRootDN: cn=info,dc=data
> olcAccess: {0}to * by dn.base="cn=info,dc=data" read by * break

Assuming the above is your actual configuration, then..

Your sync replication configuration uses:

binddn="cn=admin,dc=smartsan"

But this identity is given no access to your database, as it's not the
rootDN, and there are no ACLs providing access to it.

As an aside, your ACL {0} makes no sense since you have cn=info,cn=data as
your rootdn, and rootdn's are not subject to access control.  The only
other thing it does is break to the default ACL of to * by * none.

Regards,
Quanah


--

Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>

------------------------------------------------------------------------------------------------------------------
Il banner è generato automaticamente dal servizio di posta elettronica dell'Università della Calabria