[Date Prev][Date Next] [Chronological] [Thread] [Top]

Updateref Ignored, Part Duex: The Final Chapter




Well, at least I hope this is the final chapter.

I'm still having some replication problems. With kind help from Kurt Zeilenga I came to understand that it is not a good idea to have my rootdn and updatedn be the same. So I've added a user for purposes of replication.

This works well on my master slapd server. I can now add/modify/delete users there and have changes successfully replicate the slave. But I am still have problems at the slave end. Basicly, when I try to add users using my new "Replicator" account on the slave the go strait to the database and ignore my updateref directive.

The Replicator on the master slapd server works perfectly, and just as I test I've ldapadd-ed entries to the master slapd server remotely from my test slave using the Replicator account. This seems to work fine.

I guess this issue is somewhat cosmetic at this point, since my ldap client refers strait to the master for adds and updates. But I'd still like to have some understanding of why this doesn't work...

Any hints or thoughts?  As always, all help is greatly appreciated.

My slapd.conf from the slave is below:


# $OpenLDAP: pkg/ldap/servers/slapd/slapd.conf,v 1.8.8.7 2001/09/27 20:00:31 kurt Exp $
#
# See slapd.conf(5) for details on configuration options.
# This file should NOT be world readable.
#
include /etc/openldap/schema/core.schema
include /etc/openldap/schema/cosine.schema
include /etc/openldap/schema/inetorgperson.schema
include /etc/openldap/schema/nis.schema
include /etc/openldap/schema/redhat/rfc822-MailMember.schema
include /etc/openldap/schema/redhat/autofs.schema
include /etc/openldap/schema/redhat/kerberosobject.schema


 # Now include the GCI SchoolAccess custom schema
 include         /etc/openldap/schema/schoolaccess-attributes.schema
 include         /etc/openldap/schema/schoolaccess-objectclasses.schema

 pidfile         //var/run/slapd.pid
 argsfile        //var/run/slapd.args

 #######################################################################
 # ldbm database definitions
 #######################################################################

# Example School District A DB
database ldbm
suffix "dc=distA,dc=schoolaccess,dc=net"
rootdn "cn=Manager,dc=distA,dc=schoolaccess,dc=net"
updatedn "cn=Replicator,dc=distA,dc=schoolaccess,dc=net"
updateref "ldap://192.168.10.2";
rootpw secret
directory /var/lib/ldap/distA
index objectClass,uid,uidNumber,gidNumber,memberUid eq
index cn,mail,surname,givenname eq,subinitial


 # Access control lists
 access to *
         by dn="cn=Replicator,dc=distA,dc=schoolaccess,dc=net" write
         by * read