I'm afraid that man page is incorrect. As far as I know, that directive is global, not database specific. That's what I get from the code (and what I remembered). You can check yourself by adding the directive and inspecting the content of cn=config.
We need at least to fix the manpage.
p.
masarati@aero.polimi.it wrote:
The manpage is correct. It clearly states "This setting is only allowed in the frontend entry."
masarati@aero.polimi.it wrote:
Yes, it's allowed in olcGlobal for backward compatibility with slapd.conf, which didn't enforce any distinction between "global" and "frontend" directives. But it's not evaluated there, since it's possible to specify a hash mechanism that is loaded from a module (and the moduleLoad parsing hasn't occurred yet when olcGlobal is read).
openldap-technical@openldap.org