Is the new cn=config interface in OpenLDAP ready for production?

This is a highly debatable question, but I can provide one data point in that I've been using the cn=config approach for well over a year without issue, and haven't looked back. Yes, the new approach took a little bit of effort to get comfortable with at first, but once you understand the approach, it really doesn't require much thought on how to read something in the slapd.conf format and translate it to the cn=config format. The cn=config format does provide for easy configuration changes at runtime, centralized management of both the directory and its configuration, and does seem to match how several popular LDAP servers now configure themselves as well.

We have been using cn=config with slapd 2.4.21 on Ubuntu 9.10 and 10.04 for over a year now and are very happy with it. I'd say it is quite ready for production, especially if you run a current version of slapd (2.4.21 is pretty old by OpenLDAP project standards).

A great feature of cn=config is that every change made to the server configuration (i.e. the cn=config database) is checked for correct syntax and consistency with schema definitions. With slapd.conf a typo would prevent correct startup of the server; this can't happen with cn=config. And of course there is no need for restarting the server at all when editing the configuration. This comes very much in handy when the actual directory holds ten thousands of objects.

As far as I can tell, cn=config is the future and slapd.conf is going to go away, probably sooner than later. Also, the documentation is pretty comprehensive, what do you find missing?