[Date Prev][Date Next] [Chronological] [Thread] [Top]

Referral Error during Request Modify to Slave

To: <openldap-software@OpenLDAP.org>
Subject: Referral Error during Request Modify to Slave
From: "Roberto Morelli" <r.morelli@usl11.toscana.it>
Date: Tue, 13 Jan 2004 14:01:05 +0100

Hi -

I've set up a master and a slave server.
Replica works fine, anything added to the master is sent to the slave.
A generic user can bind to master server and change own information
succesfully (named uid=generic,ou=Users,dc=usl11,dc=net)
but if the same user bind to slave server and want to modify the information
he can't

This is my situation:
OpenLDAP 2.1.22 on Mandrake 9.1 installed from source based on BDB 4.1.25
(idem from source....)

[root@prometeo root]# ldapmodify -D
"uid=generic,ou=Users,dc=usl11,dc=net" -H l
dap://master -w annalisa -x -f file.mod -P 3
modifying entry "uid=generic,ou=Users,dc=usl11,dc=net"
OK

[root@prometeo root]# ldapmodify -D
"uid=generic,ou=Users,dc=usl11,dc=net" -H l
dap://slave -w annalisa -x -f file.mod -P 3
modifying entry "uid=generic,ou=Users,dc=usl11,dc=net"
ldapmodify: update failed: uid=generic,ou=Users,dc=usl11,dc=net
ldap_modify: Referral (10)
        referrals:
                ldap://master:389/uid=generic,ou=Users,dc=usl11,dc=net

Idem with phpldapadmin, same errors.....

With LDAP Browser 2.8.2 all works fine.....that's the user can bind to slave
and modify his information. In the configuration of a connection in LDAP
Browser
i can specify if I want to Handle Referrals...This is the explanation ? If
yes how can I solve this situation with ldapmodify ?


What am I doing wrong?

-Roberto


>Example file.mod:

dn: uid=generic,ou=Users,dc=usl11,dc=net
changetype: modify
replace: description
description: Roberto Morelli


-----
>From master's slapd.conf:
database        bdb

replica         host=slave:389
                binddn="cn=Manager,dc=usl11,dc=net"
                bindmethod=simple
                credentials=secret
replogfile      "/usr/local/etc/openldap/replica.log"

suffix          "dc=usl11,dc=net"
rootdn          "cn=Manager,dc=usl11,dc=net"
rootpw          secret
directory       /usr/local/var/openldap-data
index   objectClass     eq
index   primaryGroupID  eq
index   rid             eq
index   uid             eq
index   uidNumber       eq
index   gidNumber       eq
index   cn              pres,sub,eq
index   default         sub
password-hash           {CRYPT}
password-crypt-salt-format "$1$%.8s"



-----
>From slave's slapd.conf:

referral  ldap://master:389

database        bdb

suffix          "dc=usl11,dc=net"
rootdn          "cn=Manager,dc=usl11,dc=net"
# Cleartext passwords, especially for the rootdn, should
# be avoid.  See slappasswd(8) and slapd.conf(5) for details.
# Use of strong authentication encouraged.
rootpw          secret

readonly        off

updatedn        "cn=Manager,dc=usl11,dc=net"
updateref       ldap://master:389
directory       /usr/local/var/openldap-data
index   objectClass     eq
index   primaryGroupID  eq
index   rid             eq
index   uid             eq
index   uidNumber       eq
index   gidNumber       eq
index   cn              pres,sub,eq
index   default         sub
password-hash           {CRYPT}
password-crypt-salt-format "$1$%.8s"

------
Thanks for your help!

-- 
Roberto Morelli <r.morelli@usl11.toscana.it>
System Administrator -- Azienda U.S.L. 11 Empoli (Italy)

Follow-Ups:
- Re: Referral Error during Request Modify to Slave
  - From: Buchan Milne <bgmilne@obsidian.co.za>

Prev by Date: Re: o and c or dc?
Next by Date: Problems to authenticate Solaris 9 in OpenLDAP
Index(es):
- Chronological
- Thread