[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
trouble with replication (skip repl record)
hello,
i'm trying to set up replication beetween a master ldap and a slave ldap.
i following the OpenLDAP 2.x admin guide but when adding 2 entries in the
master ldap, the replication doesn't work on slave. the 2 entries were skipped
(2 last lines of the log).
master ldap slurpd log (level = -1) :
-------------------------------------
Config: ** configuration file successfully read and parsed
Config: (schemacheck on)
Config: (pidfile /var/run/slapd.pid)
Config: (argsfile /var/run/slapd.args)
Config: (replogfile /var/lib/ldap/replog)
Config: (loglevel -1)
Config: (database ldbm)
Config: (suffix "dc=univ-lille3,dc=fr")
Config: (rootdn "cn=rootdn,dc=univ-lille3,dc=fr")
Config: (rootpw {SSHA}v9MExqiXgYH5umjtTykEfHcKdysQ3611)
Config: (directory /var/lib/ldap)
Config: (replica host=10.131.0.6:389 binddn="cn=ldapadmin,ou=admin,dc=univ-lille3,dc=fr"
bindmethod=simple credentials=secretword)
Config: ** successfully added replica "10.131.0.6:389"
Config: (index objectClass,uid,uidNumber,gidNumber,memberUid eq )
Config: (index cn,mail eq,subinitial)
Config: (access to attribute=userPassword by anonymous auth by self read by
dn="cn=ldapadmin,ou=admin,dc=univ-lille3,dc=fr" write by
dn="cn=mailadmin,ou=admin,dc=univ-lille3,dc=fr" read by dn="cn=ftpadmin,ou=admin,dc=univ-lille3,dc=fr"
read by dn="cn=smbadmin,ou=admin,dc=univ-lille3,dc=fr" read by * none)
Config: (access to * by anonymous auth by dn="cn=ldapadmin,ou=admin,dc=univ-lille3,dc=fr" write
by dn="cn=mailadmin,ou=admin,dc=univ-lille3,dc=fr" read by
dn="cn=ftpadmin,ou=admin,dc=univ-lille3,dc=fr" read by
dn="cn=smbadmin,ou=admin,dc=univ-lille3,dc=fr" read by self read )
Config: ** configuration file successfully read and parsed
begin replication thread for 10.131.0.6:389
Replica 10.131.0.6:389, skip repl record for uid=etu4.etu4,ou=etu,dc=univ-lille3,dc=fr (not mine)
Replica 10.131.0.6:389, skip repl record for uid=etu5.etu5,ou=etu,dc=univ-lille3,dc=fr (not mine)
can anybody help me ?
i'm sure the credentials for the binddn replication entry used (my entry
cn=ldapamin) is OK ; it has write ACL for all attributes.
here's my slapd.conf for both machines
MASTER :
-------
include /etc/openldap/schema/core.schema
include /etc/openldap/schema/cosine.schema
include /etc/openldap/schema/inetorgperson.schema
include /etc/openldap/schema/nis.schema
include /etc/openldap/schema/redhat/rfc822-MailMember.schema
include /etc/openldap/schema/redhat/autofs.schema
include /etc/openldap/schema/redhat/kerberosobject.schema
include /etc/openldap/schema/qmail.schema
include /etc/openldap/schema/authldap.schema
include /etc/openldap/schema/samba.schema
include /etc/openldap/schema/l3-user.schema
schemacheck on
pidfile /var/run/slapd.pid
argsfile /var/run/slapd.args
replogfile /var/lib/ldap/replog
loglevel -1
database ldbm
suffix "dc=univ-lille3,dc=fr"
rootdn "cn=rootdn,dc=univ-lille3,dc=fr"
rootpw {SSHA}v9MExqiXgYH5umjtTykEfHcKdysQ3611
directory /var/lib/ldap
replica host=10.131.0.6:389 binddn="cn=ldapadmin,ou=admin,dc=univ-lille3,dc=fr" bindmethod=simple
credentials=secretword
index objectClass,uid,uidNumber,gidNumber,memberUid eq
index cn,mail eq,subinitial
access to attribute=userPassword
by anonymous auth
by self read
by dn="cn=ldapadmin,ou=admin,dc=univ-lille3,dc=fr" write
by dn="cn=mailadmin,ou=admin,dc=univ-lille3,dc=fr" read
by dn="cn=ftpadmin,ou=admin,dc=univ-lille3,dc=fr" read
by dn="cn=smbadmin,ou=admin,dc=univ-lille3,dc=fr" read
by * none
access to *
by anonymous auth
by dn="cn=ldapadmin,ou=admin,dc=univ-lille3,dc=fr" write
by dn="cn=mailadmin,ou=admin,dc=univ-lille3,dc=fr" read
by dn="cn=ftpadmin,ou=admin,dc=univ-lille3,dc=fr" read
by dn="cn=smbadmin,ou=admin,dc=univ-lille3,dc=fr" read
by self read
SLAVE :
-------
include /etc/openldap/schema/core.schema
include /etc/openldap/schema/cosine.schema
include /etc/openldap/schema/inetorgperson.schema
include /etc/openldap/schema/nis.schema
include /etc/openldap/schema/redhat/rfc822-MailMember.schema
include /etc/openldap/schema/redhat/autofs.schema
include /etc/openldap/schema/redhat/kerberosobject.schema
include /etc/openldap/schema/qmail.schema
include /etc/openldap/schema/authldap.schema
include /etc/openldap/schema/samba.schema
include /etc/openldap/schema/l3-user.schema
schemacheck on
pidfile /var/run/slapd.pid
argsfile /var/run/slapd.args
loglevel -1
database ldbm
suffix "dc=univ-lille3,dc=fr"
rootdn "cn=rootdn,dc=univ-lille3,dc=fr"
rootpw {SSHA}v9MExqiXgYH5umjtTykEfHcKdysQ3611
directory /var/lib/ldap
updatedn "cn=ldapadmin,ou=admin,dc=univ-lille3,dc=fr"
updateref "ldap://10.131.0.5:389";
index objectClass,uid,uidNumber,gidNumber,memberUid eq
index cn,mail eq,subinitial
access to attribute=userPassword
by anonymous auth
by self read
by dn="cn=ldapadmin,ou=admin,dc=univ-lille3,dc=fr" write
by dn="cn=mailadmin,ou=admin,dc=univ-lille3,dc=fr" read
by dn="cn=ftpadmin,ou=admin,dc=univ-lille3,dc=fr" read
by dn="cn=smbadmin,ou=admin,dc=univ-lille3,dc=fr" read
by * none
access to *
by anonymous auth
by dn="cn=ldapadmin,ou=admin,dc=univ-lille3,dc=fr" write
by dn="cn=mailadmin,ou=admin,dc=univ-lille3,dc=fr" read
by dn="cn=ftpadmin,ou=admin,dc=univ-lille3,dc=fr" read
by dn="cn=smbadmin,ou=admin,dc=univ-lille3,dc=fr" read
by self read
Thank you for your help
----
Arnaud Jayet
ajayet@free.fr
----