--On Monday, June 8, 2020 12:23 PM -0700 John Alexander jalexander@concentricsky.com wrote:
Thank you for your patience, Quanah. The ldapsearch output of cn=config is below (with passwords redacted):
What you really need to track down is where slapd's configuration is actually stored, so you can slapcat it correctly. The ldapsearch output shows a valid configuration, where ppolicy is loaded, the schema exists, and the overlay is attached to the HDB database.
Your ACLs are a bit of a mess, and I think that "by * read" on userPassword is a *very* bad idea, but the first part needs fixing first.
Regards, Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com