.B olcAddContentAcl: TRUE | FALSE
Controls whether Add operations will perform ACL checks on
the content of the entry being added. This check is off
-by default; usually only Write access to the parent entry's
-children pseudo-attribute is required.
+by default. See the
+.BR slapd.access (5)
+manual page for more details on ACL requirements for
+Add operations.
.TP
.B olcHidden: TRUE | FALSE
Controls whether the database will be used to answer
.B add
access to
.B children
-of the empty DN ("") is required.
+of the empty DN ("") is required. Also if
+Add content ACL checking has been configured on
+the database (see the
+.BR slapd.conf (5)
+or
+.BR slapd-config (5)
+manual page),
+.B add (=a)
+will be required on all of the attributes being added.
.LP
The
.B add_content_acl on | off
Controls whether Add operations will perform ACL checks on
the content of the entry being added. This check is off
-by default; usually only Write access to the parent entry's
-children pseudo-attribute is required.
+by default. See the
+.BR slapd.access (5)
+manual page for more details on ACL requirements for
+Add operations.
.TP
.B hidden on | off
Controls whether the database will be used to answer
projects / openldap / commitdiff