dn: olcDatabase={1}mdb,cn=config
changetype: modify
replace: olcAccess
olcAccess: {0}to * by dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth manage by * break
olcAccess: {1}to dn.base="dc=smime,dc=uni-bremen,dc=de" by * read
olcAccess: {2}to dn.subtree="ou=people,dc=smime,dc=uni-bremen,dc=de" by * read
olcAccess: {3}to attrs=userPassword,shadowLastChange by self write by dn="cn=admin,dc=smime,dc=uni-bremen,dc=de" write by anonymous auth by * none
olcAccess: {4}to * by self read by dn="cn=admin,dc=smime,dc=uni-bremen,dc=de" write by * none