[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: slurpd -d9 --- Invalid credentials



On Saturday 15 July 2006 09:27, Steven Wong wrote:

> replica host=<server2>:389
>         suffix="dc=pro-unlimited,dc=com"
>        
> binddn="uid=replicator,ou=ldapbods,ou=people,dc=pro-unlimited,dc=com"
> credentials={MD5}$1$ghofW1$RazQvsgWa/7dtiphrRRPe0
>         bindmethod=simple
>         tls=yes
>  replica host=<server3>:389
>          suffix="dc=pro-unlimited,dc=com"
>         
> binddn="uid=replicator,ou=ldapbods,ou=people,dc=pro-unlimited,dc=com"
> credentials={MD5}$1$ghofW1$RazQvsgWa/7dtiphrRRPe0
>          bindmethod=simple
>          tls=yes


If you are using simple, the credentials *must* be the cleartext password.

Please test that you can authenticate to the slave as replicator before you do 
anything else, eg:

ldapwhoami -x -D 
uid=replicator,ou=ldapbods,ou=people,dc=pro-unlimited,dc=com -w <text after 
credentials=> -h <server2>

etc. to test. Use only details in the file (copy/paste), not what you think 
the password is.

BTW, you really want to upgrade *all* your LDAP servers to 2.3.x, ideally 
2.3.24, and switch to sync-reply.

Regards,
Buchan


-- 
Buchan Milne
ISP Systems Specialist
B.Eng,RHCE(803004789010797),LPIC-2(LPI000074592)

Attachment: pgp7v8Nclspm0.pgp
Description: PGP signature