Re: Denying access to syncrepl consumere during initial DIT content load

On Mon, Mar 24, 2014 at 10:11:40AM +0100, Christian Kratzer wrote:

This is another situation in which it would be nice to be able to disallow any ldap connections to a consumere while it is in the initial sync phase.

Any client should be denied during this phase: you do not want to serve incorrect information.

I have slapd startup script that run slapd on an alternate port until replication is in sync, then starts normally. But indeed preventing service while the DIT is incolmplete would be nice.