LDAP Replication: Failure of LDAP replication will manifest itself as intermittent failures of authentication at the IdP or intermittent to persistent failures of attribute release by the IdP due to the varying connection pooling configuration of the IdP. LDAP replication failure will not affect any other component directly, e.g. the CPR and its subcomponents will continue to work.
Remediation efforts begin with identifying why LDAP replication is failing by consulting the 389 logs and addressing any underlying issues. With reasonable logging settings, 389 may not reliably report to the outside world that replication is failing. Specifically, cn=monitor may report that replication is still enabled and the replication agreements are still in place. Active investigation is necessary beginning with the 389 logs.