(Answer) (Category) OpenLDAP Faq-O-Matic : (Category) OpenLDAP Software FAQ : (Category) Configuration : (Category) SLAPD Configuration : (Category) Overlays : (Answer) Return all attributes including operational: the "allop" overlay (OpenLDAP 2.3)
The allop overlay adds "+" to the requested attributes list when it's empty or it contains "*", so that all attributes, including operational, are returned. This may be useful for those clients that do not make use of "+" and expect operational attributes to be returned with "*", which is in contrast with RFC3673. By default it operates only for requests directed to the rootDSE (i.e. base "" and scope "base"), but it can be configured to be triggered by any search request spanning a given URI; for example, the instructions 

overlay         allop
allop-URI       "ldap:///??sub"
placed before any database instantiation will trigger the overlay for all search requests.

NOTE: it could be adapted to work with OpenLDAP 2.2, although it currently exploits some helpers introduced in OpenLDAP 2.3; however, only OpenLDAP 2.3 supports global overlays, which are required to intercept requests to the rootDSE, so its porting is moot.

[Append to This Answer]
Previous: (Answer) Keep values sorted: the "valsort" overlay (OpenLDAP 2.3)
Next: (Answer) Syncing credentials with Samba & Heimdal krb5: the "smbk5pwd" overlay (OpenLDAP 2.3)
This document is: http://www.openldap.org/faq/index.cgi?file=1258
[Search] [Appearance]
This is a Faq-O-Matic 2.721.test.
© Copyright 1998-2013, OpenLDAP Foundation, info@OpenLDAP.org