diff --git a/dockers/ldap/base/acl.ldif.tmpl b/dockers/ldap/base/acl.ldif.tmpl
index f6266f9..88aa4cd 100644
--- a/dockers/ldap/base/acl.ldif.tmpl
+++ b/dockers/ldap/base/acl.ldif.tmpl
@@ -16,6 +16,7 @@ olcAccess: {1}to dn.subtree="$LDAPROOT"
   by dn="cn=mobilizon,ou=applications,$LDAPROOT" read
   by dn="cn=mastodon,ou=applications,$LDAPROOT" read
   by dn="$BINDDN" write
+  by users search
   by * none
 olcAccess: {2}to *
   by dn="$BINDDN" write