--On Saturday, February 6, 2021 8:55 PM +0100 Uwe Sauter uwe.sauter.de@gmail.com wrote:
So, I've cloned two of the produciton machines, slapcat'ed the DB, updated to Symas' 2.4.57 and slapadd'ed the DB. Queries work, replication does work,…
The problem persists. If I try to restrict one of the pwd* attributes using
access to attrs=<pwdAttribute> by * none
then slaptest will fail with
601ef16b /etc/openldap/acl.conf: line 93: unknown attr "<pwdAttribute>" in to clause 601ef16b <access clause> ::= access to <what> [ by <who> [ <access> ] [ <control> ] ]+ […]
Snippets are not useful, as slapd.conf is contextual and it matters where certain directives exist. You need to provide your entire slapd.conf with sensitive parts redacted (i.e., passwords, hostnames if you care about them, etc).
--Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com