Comment 3 for bug 631332

Also, the following sections differ by shadowLastChange. Which one is correct?

backend.example.com.ldif
olcAccess: to attrs=userPassword by dn="cn=admin,dc=example,dc=com" write by anonymous auth by self write by * none
olcAccess: to attrs=shadowLastChange by self write by * read
olcAccess: to dn.base="" by * read
olcAccess: to * by dn="cn=admin,dc=example,dc=com" write by * read

in ACL section
dn: olcDatabase={1}hdb,cn=config
olcAccess: {0}to attrs=userPassword,shadowLastChange by dn="cn=admin,dc=exampl
 e,dc=com" write by anonymous auth by self write by * none
olcAccess: {1}to dn.base="" by * read
olcAccess: {2}to * by dn="cn=admin,dc=example,dc=com" write by * read

and also in the ACL section:
ldapsearch -xLLL -b cn=config -D cn=admin,cn=config -W olcDatabase=hdb olcAccess

but it looks like there is no place in the guide where we had set a password for that?
Instead, I used:
ldapsearch -Y EXTERNAL -H ldapi:/// -LLL -b cn=config olcDatabase=hdb olcAccess