From 02b98006f01127acfb56070168f3b3771246d195 Mon Sep 17 00:00:00 2001
From: Kurt Zeilenga <kurt@openldap.org>
Date: Tue, 25 Feb 2003 19:00:59 +0000
Subject: [PATCH] Add comment about subschema ACLs

---
 servers/slapd/slapd.conf | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/servers/slapd/slapd.conf b/servers/slapd/slapd.conf
index cfdf733971..679cbbf936 100644
--- a/servers/slapd/slapd.conf
+++ b/servers/slapd/slapd.conf
@@ -34,12 +34,14 @@ argsfile	%LOCALSTATEDIR%/slapd.args
 
 # Sample access control policy:
 #	Root DSE: allow anyone to read it
+#	Subschema (sub)entry DSE: allow anyone to read it
 #	Other DSEs:
 #		Allow self write access
 #		Allow authenticated users read access
 #		Allow anonymous users to authenticate
 #	Directives needed to implement policy:
 # access to dn.base="" by * read
+# access to dn.base="cn=Subschema" by * read
 # access to *
 #	by self write
 #	by users read
-- 
2.39.5