Sunday, March 6, 2022

[389-users] Re: multi-supplier replication with certificate-based authentication

This means that the user ... well doesn't have permission!

You need to add the bind dn to nsDS5ReplicaBindDN I think it is. That's what grants them the permission to be a replication user.

There is also the ability to use a replication bind dn group if you want per-server identities

> On 7 Mar 2022, at 16:12, Giacomo Comes <> wrote:
> does not have permission to supply replication updates to the replica. Will retry later.


William Brown

Senior Software Engineer,
Identity and Access Management
SUSE Labs, Australia
389-users mailing list --
To unsubscribe send an email to
Fedora Code of Conduct:
List Guidelines:
List Archives:
Do not reply to spam on the list, report it:

No comments:

Post a Comment