This content has been marked as final. Show 1 reply
It might happen if you synchronize huge LDAP objects, e.g. large static groups.
By default, the max encoded object size accepted by slapd is 2Mb.
You can try to increase the nsslapd-maxbersize parameter value:
nsslapd-maxbersize sets the maximum size in bytes for an incoming ASN.1 message encoded according to Basic Encoding Rules, BER. Directory Server rejects requests to add entries larger than this limit.
You set this attribute with the ldapmodify command.
If you are confident you can accurately anticipate maximum entry size for your directory data, consider changing this value from the default of 2097152, which is 2 MB, to the size of the largest expected directory entry.