while trying to build something which tracks password change events via
event monitoring i've made the following observations:

- the EVT_CHGPASS event seems to be server centric, i.e. it doesn't report
password changes which were initially written to a replica other than the
one i bind the ldap_monitor_events against.

- it generally reports nothing if universal password is enabled for a
given user.

this behaviour applies to (at least) edir 8739ftf3 with security services4
running on netware.

is this by design? any idea how to track all password change events
(regardless of the replica they were committed to initially) with a call
to just one server (which obviously has to have replicas of all objects)?

thanks for any help,