Re: Syncrep without sessionlog in slapd.conf

[Lee Jensen <lee_jensen@sento.com>]

On Wed, 2005-03-16 at 15:31 +0700, Firman Indra Buana wrote:
> Hi,
> 
> Sorry for the ambiguity, the case is I want to synrepl other master 
> ldap. There is master ldap with openldap, the resource is close for me 
> unless for query. So I've an idea to syncrepl but how to do it without 
> doing any change in configuration of master ldap. So only write to my 
> database not to the master. Hope there is a answer for this.

I think I understand what you are asking. Let me make sure...

You want to be able to do replication without modifying the
configuration of the master whatsoever... Correct??

First, this is possible.

However for syncrepl replication you need 2 user DNs one in the slave
and one in the master. The master dn you use must be able to read
everything in the tree. The manager DN can do this by default but I
would not recommend using it unless you have to because it requires you
to place the managers password into the slave configuration file.

The DN in the slave just needs to exist, it can be any class of object,
whatever you choose, but it must be given access through ACLs to write
to the entire tree.

Hope this clarifies...

Lee Jensen