Is it true that openldap (2.0.23) can not handle group="role=managers,dc=.*,dc=com" as a group ACL ? In the 2.1 docs I see that there is a group.regex style, so I assume it works there ? _Ace