ACL3 by self write grants the owner of the entry write permission to the attributes covered by this directive. LDAP clients will need to refer to multiple servers if replication is in use.
OpenLDAP comes with multiple logging subsystems levels with each one containing the lower one additive.
This is required to create the addressbook entry. The default is zero.ACL5 - this is the entry permission partner of ACL4 and is required to allow creating of an new entry in the addressbook. Also, the credentials are just an example. By setting the uid and gid values in ldap high, you also allow for easier control of what can be done with a local user vs a ldap one. Every time a change is done in the provider, this value will change and so should the one in the consumer s. On Ubuntu, this has been traditionally accomplished by installing the libnss-ldap package. By default anonymous connections, irrespective of the setting of any ACL cannot write to a DIT unless this directive is present. By default the BDB environment uses memory mapped files.
Modify the existing olcSyncrepl attribute by tacking on some TLS options. Logging Activity logging for slapd is indispensible when implementing an OpenLDAP-based solution yet it must be manually enabled after software installation.
OpenLDAP also implicitly terminates every access directive with this rule whether present or not to close any remaining doors - anything not covered by a preceding clause can do nothing. Make sure you use different ID's for different servers, in example 0, 1, etc ACL1 by self write grants only the owner of the entry they authenticated with the userpassword of this entry write permission to this attribute.
ACL7 by users read any authenticated user can read the public address book.
The second line causes the default pres,eq set of indices to be maintained for the uid attribute type.