Replicated operations are being rejected with LDAP error 50.

Solution Verified - Updated -

Issue

RHDS documentation states that the Replication Manager is not subject to ACIs when performing operations on the replicated suffixes:

This entry, with its special user profile, bypasses all access control rules defined on the consumer server for the database involved in that replication agreement.

Nonetheless there are replicated operations being rejected due to LDAP error 50 ( LDAP_INSUFFICIENT_ACCESS ):

[18/Feb/2021:17:55:40.988098851 +0100] conn=594722 fd=64 slot=64 SSL connection from 10.251.109.58 to 10.251.100.53
[18/Feb/2021:17:55:40.991545312 +0100] conn=594722 TLS1.3 128-bit AES-GCM
[18/Feb/2021:17:55:40.991610102 +0100] conn=594722 op=0 BIND dn="cn=replication manager,cn=config" method=128 version=3
...
[18/Feb/2021:17:56:22.529717776 +0100] conn=594722 op=22 MOD dn="companyid=123456789,cn=app,dc=example,dc=com"
[18/Feb/2021:17:56:22.552871706 +0100] conn=594722 op=22 RESULT err=50 tag=103 nentries=0 etime=0.024248036 csn=602eb855000600990000

Environment

Red Hat Enterprise Linux 8
Red Hat Directory Server 11
Red Hat Enterprise Linux 7
Red Hat Directory Server 10

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content