Hello,

I have the following tree structure in LDAP:
ou=people,dc=example,dc=com
  uid=user1,ou=people,dc=example,dc=com
           cn=child1,uid=user1,ou=people,dc=example,dc=com
           cn=child2,uid=user1,ou=people,dc=example,dc=com
  uid=user2,ou=people,dc=example,dc=com
..

I would like to make access in such a way: if father's account (uid=user1,ou=people,dc=example,dc=com) is inactivated (description=inaktiv), all children become inaccessible.
I have tried with this, but it has not functioned:
 to dn.regex="uid=([^,]+),ou=people,dc=example,dc=com" filter="(description=inaktiv)" attrs=children
 by group.exact="cn=ldapadmin,dc=example,dc=com" tls_ssf=128 sasl_ssf=56 write
 by * none


Is it possible to implement such a thing?
Thanks in advance for help!

Natalia