RE: Syncrepl and mmr

["Borresen, John - 0442 - MITLL" <John.Borresen@ll.mit.edu>]

Thanks for the quick response Quanah...

I am using /usr/local/openldap/etc/openldap/CA/cacert.pem

It is using the same file location on all servers.  

It is a wildcard cert.

-----Original Message-----
From: Quanah Gibson-Mount [mailto:quanah@zimbra.com] 
Sent: Friday, January 31, 2014 1:26 PM
To: Borresen, John - 0442 - MITLL; openldap-technical@openldap.org
Subject: RE: Syncrepl and mmr

--On Friday, January 31, 2014 1:20 PM -0500 "Borresen, John - 0442 - MITLL" 
<John.Borresen@ll.mit.edu> wrote:

> Thanks, Quanah
>
> Not sure what you meant by " Well, it may not have been this issue, 
> but it definite would become an issue then."
>
> Was what I did a good thing or not?  Curious minds want to know. <lol>

The lack of read permissions for the replication user would absolutely be an issue at some point. ;)

> MM Server1:
># ldapsearch -H ldap://mm-server1.example.ldap -d 256 -x -D # 
>cn=admin,cn=config -W -ZZ -b olcDatabase=\{1\}bdb,cn=config  
>olcSyncrepl

What CA cert is your ldapsearch command using?

--Quanah

--

Quanah Gibson-Mount
Architect - Server
Zimbra, Inc.
--------------------
Zimbra ::  the leader in open source messaging and collaboration