[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: partial replication

To: openldap-software@OpenLDAP.org
Subject: Re: partial replication
From: Dieter Kluenter <dieter@dkluenter.de>
Date: Thu, 22 Jan 2004 07:50:37 +0100
In-reply-to: <400F18D8.8060402@sentinare.net> (Chris Paul's message of "Wed, 21 Jan 2004 16:27:04 -0800")
References: <400F18D8.8060402@sentinare.net>
User-agent: Gnus/5.1001 (Gnus v5.10.1) XEmacs/21.4 (Portable Code, linux)

Hi,

Chris Paul <chris.paul@sentinare.net> writes:

> Dear OpenLDAP-software List,
>
> I am creating implementing OpenLDAP. The basic uses for LDAP will be
> pam_ldap, nss_ldap, and apache logins for customers. So...
>
> I have created two OU's:
>
> ou=corporate,dc=company,dc=com
> ou=customers,dc=company,dc=com
>
> Under ou=corporate,dc=company,dc=com, I have the standard nss_ldap
> groups (People, Group, etc)
> Under ou=customers,dc=company,dc=com, I will install customer login
> information.
>
> I'd like to manage this all from one master server (inside the
> corporate network), but replicate only the customers OU to some
> servers in the DMZ.
>
> Is this possible? What is the best way?
>
> I tried multiple database declarations in slapd.conf, but that didn't
> solve my problem.

See man slapd.conf(5)

replica
        host=your.host
        suffix=ou=customers,dc=company,dc=com
        attr=list of attributes (if you want to replicate a subset of
        attributes only)
        ...
        ...

-Dieter

-- 
Dieter Kluenter  | Systemberatung
Tel:040.64861967 | Fax: 040.64891521
mailto: dkluenter(at)dkluenter.de
http://www.avci.de

Follow-Ups:
- Re: partial replication
  - From: Chris Paul <chris.paul@sentinare.net>

References:
- partial replication
  - From: Chris Paul <chris.paul@sentinare.net>

Prev by Date: Question Regarding the use of TLS_CACERTDIR and TLS_CACERTFILE
Next by Date: Re: partial replication
Index(es):
- Chronological
- Thread