olcAccess replication - error 80 attributes not within database namespac

olcAccess replication - error 80 attributes not within database namespace

To: openldap-technical@openldap.org

Subject: olcAccess replication - error 80 attributes not within database namespace

From: Igor Zinovik <zinovik.igor@gmail.com>

Date: Fri, 17 May 2013 17:49:36 +0400

Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:x-received:date:message-id:subject:from:to :content-type; bh=JOI6I9GQnUD1rA5e1vzO37ItDiQGgHSszMcoItOe1T4=; b=uqMqs+mHLnQIANMBEzIlFmHS8gfYGqFdoAAqBhPY/LG4Kqk36LGgNVxVbvM8fltYfW bO08H4bDcGmJ2HMorpMK2NRmSIEL9GfO8wBP015k+8HvXQC++e/Kz6YbE0mSW1Ts30GS EDD4Pl0m5Q+AvlSX0E+dC+Gmk9OuyLnYsrndmR1eM/4w1w8sRsiwzxPsvbMl3iH4iTYP XfZ/fJJLpCDzrojYV91BvKSb33HHmzX7idvKYM2Nk8IOaqxIGSYntJDqJfaPSDzs+aFW k9i2YAErx4Dv8ju+fQrGTEqEhU5I3wmNSo3SsbnFtflqcAZ/j19SocU1JS7TBDGkBcHf TSjg==

Â Hello.

I'm trying to replicate access rules and limits for one of my databases, but
with no success:
suse:~ # cat olcAccess-syncrepl.ldif
dn: olcDatabase={1}mdb,cn=config
changetype: modify
add: olcSyncrepl
olcSyncrepl: {1}rid=002
Â provider=ldap://ldap1.local
Â bindmethod=simple
Â binddn="cn=admin,cn=config"
Â credentials="TopSecret"
Â searchbase="olcDatabase={1}mdb,cn=config"
Â attrs="olcAccess,olcLimits"
Â timeout=3
Â network-timeout=0
Â starttls=yes
Â tls_cert="/etc/openldap/ldap.pem"
Â tls_key="/etc/openldap/ldap.key"
Â tls_cacert="/etc/ssl/local-ca.pem"
Â tls_reqcert=demand
Â tls_crlcheck=none

suse:~ # ldapmodify -H ldap://ldap2.local -ZZxWD cn=admin,cn=config -f olcAccess-syncrepl.ldif
Enter LDAP Password:
modifying entry "olcDatabase={1}mdb,cn=config"
ldap_modify: Other (e.g., implementation specific) error (80)
ÂÂÂÂÂÂÂ additional info: Base DN "olcAccess,olcLimits" is not within the database naming context

slapd-2.4.33 if it matters.