diff -Nur e-smith-ldap-5.4.0/root/etc/e-smith/templates/etc/openldap/slapd.conf/95acls60sensibleObjects e-smith-ldap-5.4.0_bz8000/root/etc/e-smith/templates/etc/openldap/slapd.conf/95acls60sensibleObjects
--- e-smith-ldap-5.4.0/root/etc/e-smith/templates/etc/openldap/slapd.conf/95acls60sensibleObjects	2013-02-13 16:21:50.000000000 +0100
+++ e-smith-ldap-5.4.0_bz8000/root/etc/e-smith/templates/etc/openldap/slapd.conf/95acls60sensibleObjects	2013-11-12 18:50:47.637883802 +0100
@@ -1,12 +1,12 @@
 # Anonymous users should only be able to see SME users and groups for addressbook purpose
 # Prevent access to system, dummy and machine accounts
 
-access to dn.subtree=ou=Users,{ esmith::util::ldapBase ($DomainName); } filter=(!(objectClass=inetOrgPerson))
+access to dn.children=ou=Users,{ esmith::util::ldapBase ($DomainName); } filter=(!(objectClass=inetOrgPerson))
         by users	peername.ip="127.0.0.1"	read
         by users	ssf=128	read
         by anonymous	none
 
-access to dn.subtree=ou=Groups,{ esmith::util::ldapBase ($DomainName); } filter=(!(objectClass=mailboxRelatedObject))
+access to dn.children=ou=Groups,{ esmith::util::ldapBase ($DomainName); } filter=(!(objectClass=mailboxRelatedObject))
         by users        peername.ip="127.0.0.1" read
         by users        ssf=128 read
         by anonymous	none