[Date Prev][Date Next] [Chronological] [Thread] [Top]

Replication Problem

To: openldap-software@OpenLDAP.org
Subject: Replication Problem
From: Leonard Tulipan <l.tulipan@mpwi.at>
Date: Fri, 18 Jun 2004 15:15:06 +0200
User-agent: Mozilla Thunderbird 0.5 (Windows/20040207)

Hi!

First of: I am a relative LDAP Newbie, so please be gentle.

I managed to change an existing LDAP configuration to do replication.
both "server" and "client" are RedHat 7.3 with openldap-servers-2.0.27-2.7.3

Now I also need a RedHat 9 machine (with openldap-servers-2.0.27-8 )
to be a slave.

I copied the entire /etc/openldap and /var/lib/ldap directories with rsync to the new machine.

This is the entry in the master slapd.conf ( I have a second one right before this one - and that one works) replica host=epimetheus.intern.mpwi.at:389 binddn="cn=Manager,dc=intern,dc=mpwi,dc=at" bindmethod=simple credentials=PASSWORD

The client/slave config looks like this:

===================
include         /etc/openldap/schema/core.schema
include         /etc/openldap/schema/cosine.schema
include         /etc/openldap/schema/nis.schema
include         /etc/openldap/schema/inetorgperson.schema
include         /etc/openldap/schema/samba.3.schema
include         /etc/openldap/schema/redhat/rfc822-MailMember.schema
include         /etc/openldap/schema/redhat/autofs.schema
include         /etc/openldap/schema/redhat/kerberosobject.schema
include         /etc/openldap/schema/qmail.schema
include /etc/openldap/schema/rolodap.schema
include /etc/openldap/schema/phpgwaccount.schema
include /etc/openldap/schema/phpgwcontact.schema
loglevel        256
modulepath     /usr/sbin/openldap
moduleload     back_ldap.la
moduleload     back_ldbm.la
moduleload     back_passwd.la
moduleload     back_shell.la

access to attr=userpassword
   by self write
   by anonymous auth
   by * none

access to attr=lmpassword
   by self write
   by anonymous auth
   by * none

access to attr=ntpassword
   by self write
   by anonymous auth
   by * none

access to *
   by self write
   by dn=".+" read
   by * read

access to attr=ntpassword
   by self write
   by anonymous auth
   by * none

access to *
   by self write
   by dn=".+" read
   by * read

database        ldbm
suffix          "dc=intern,dc=mpwi,dc=at"
rootdn          "cn=Manager,dc=intern,dc=mpwi,dc=at"
rootpw          PASSWORD
directory       /var/lib/ldap
index   objectClass,uid,uidNumber,gidNumber,memberUid   eq
index   cn,mail,surname,givenname                       eq,subinitial

updatedn "cn=Manager,dc=intern,dc=mpwi,dc=at"
referral master://ldap.intern.mpwi.at
===================

Now when I browse with UofMichigan's Ldap Browser ( http://www.iit.edu/~gawojar/ldap/ ) This is what the working replication "slave" looks like:

dc=intern,dc=mpwi,dc=at
L_ ou=Groups
L_ ou=Computers
L_ etc., etc., etc.

Now doing this on the non-working slave I get:

dc=intern,dc=mpwi,dc=at
L_ dc=intern,dc=mpwi,dc=at [ldap.intern.mpwi.at:389]
      L_ ou=Groups
      L_ ou=Computers
      L_ etc., etc., etc.

Now, whatever that means, when the master server is down, I can still browse the working replication, but when I look at this second one it ALWAYS needs to connect to the master (hence it is not really a usefull backup)

What have I done wrong. I really appreciate hearing from a specialist.

btw: browsing thru the mailing-list didn't find me an answer

Cheers
Leonard

Follow-Ups:
- Re: Replication Problem
  - From: Quanah Gibson-Mount <quanah@stanford.edu>
- Re: Replication Problem
  - From: Buchan Milne <bgmilne@obsidian.co.za>

Prev by Date: Re: postalAddress index? and recommendation
Next by Date: Re: Replication Problem
Index(es):
- Chronological
- Thread