[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Syncrepl not replicating userPassword

 On 22/10/2010 21:57, Robert Klopotoski, Jr. wrote:

I'm running into a problem with syncrepl that I hope someone can help with. I'm hoping it's a simple config problem. There was another thread similar to this one, and I have tried the solutions and still failed.

Running slapd 2.4.11 on both the consumer and the provider. The provider has thousands of records with numerous attributes including 'userPassword'. The consumer got it's start from a direct copy of the database files from the provider. All existing accounts have the userPassword attribute on both the consumer and provider. Any time a new record is added to the provider, it synchronizes all attributes other than the userPassword field.

The provider has an account on it "dc=replica,dc=domain,dc=edu" for the syncrepl to use from the consumer. An ldap search to the provider using this account shows that it can see userPassword:

ldapsearch -x -LLL -b dc=endicott,dc=edu -W -D cn=replica,dc=endicott,dc=edu

returns the dn of
    dn: uid=112232584,ou=Students,ou=People,dc=endicott,dc=edu
including the attribute of:
    userPassword:: e0NSWVBUfSQxJFZ5TXdTJHJJdS85L0EvWjl6UlZnZ3lKYjNtMjE=

The consumer for whatever reason is not adding this attribute to any records it syncs. All other attributes come over fine.

If I do a complete cleanout of the consumer and have it start it's database directly from the provider, it does the same thing and pulls over everything but userPassword.

The config of the consumer is listed below.  Where could the problem lie?

Thanks to all those who responded. I built another consumer on a new box with the same config file, and it is now synchronizing without a problem. This is a weird one, and I don't know what the problem was, but now I'm up and running with a new backup server.