On Wed, Jan 28, 2026 at 06:23:54AM -0000, [email protected] wrote: > I'm having an issue with LDAP replication hanging on our AWS ldap > users (our master is on prem). So I've been playing with timeouts and > keepalive But sometimes when I restart the slapd, it will start to > continue replication and then all of a sudden it will start deleting > all the users: > > syncrepl_del_nonpresent: rid=222 be_delete DN (0) > > and the only way I've found to recover is to stop the slapd, slapcat > from the master and slapadd the ldif file into the consumer. Anyone > know why this may be happening? Am I missing some setting that I > haven't found yet?
Are you running deltasync by any chance? People sometimes forget that the replication user needs unrestricted read access to the actual database as well as the accesslog DB in that case, make sure you have this covered. Even if not, ACLs would be the first thing on my list. Regards, -- Ondřej Kuzník Senior Software Engineer Symas Corporation http://www.symas.com Packaged, certified, and supported LDAP solutions powered by OpenLDAP
