[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: LDAP slurp problem
Hi,
I've played a lot with LDAP and I've a working configuration for master/slave
slurp replication and multi trees!
I've tested this configuration up to four db and works fine.
I attach master and slave configuration.
######## START OF MASTER slapd.conf
# removed previous stuff from original file ;-)
######## 1st database
database ldbm
suffix "dc=domain1,dc=it"
rootdn "cn=Manager,dc=domain1,dc=it"
# Cleartext passwords, especially for the rootdn, should
# be avoided. See slappasswd(8) and slapd.conf(5) for details.
# Use of strong authentication encouraged.
rootpw mypasswd
# rootpw {crypt}ijFYNcSNctBYg
# The database directory MUST exist prior to running slapd AND
# should only be accessible by the slapd/tools. Mode 700 recommended.
directory /var/lib/ldap/domain1-it
# Indices to maintain
index objectClass,uid,uidNumber,gidNumber,memberUid eq
index cn,mail,surname,givenname eq,subinitial
index sambaSID eq
index sambaPrimaryGroupSID eq
index sambaDomainName eq
index default sub
replica host=slave:389
binddn="cn=Manager,dc=domain1,dc=it"
bindmethod=simple credentials=mypasswd
replogfile /var/lib/ldap/replication.log
######## 2nd database
database ldbm
suffix "dc=domain2,dc=it"
rootdn "cn=Manager,dc=domain2,dc=it"
# Cleartext passwords, especially for the rootdn, should
# be avoided. See slappasswd(8) and slapd.conf(5) for details.
# Use of strong authentication encouraged.
rootpw mypasswd
# rootpw {crypt}ijFYNcSNctBYg
# The database directory MUST exist prior to running slapd AND
# should only be accessible by the slapd/tools. Mode 700 recommended.
directory /var/lib/ldap/domain2-it
# Indices to maintain
index objectClass,uid,uidNumber,gidNumber,memberUid eq
index cn,mail,surname,givenname eq,subinitial
index sambaSID eq
index sambaPrimaryGroupSID eq
index sambaDomainName eq
index default sub
replica host=slave:389
binddn="cn=Manager,dc=domain2,dc=it"
bindmethod=simple credentials=mypasswd
replogfile /var/lib/ldap/replication.log
######## END OF MASTER slapd.conf
######## START OF SLAVE slapd.conf
# removed previous stuff from original file ;-)
######## 1st database
database ldbm
suffix "dc=domain1,dc=it"
rootdn "cn=Manager,dc=domain1,dc=it"
# Cleartext passwords, especially for the rootdn, should
# be avoided. See slappasswd(8) and slapd.conf(5) for details.
# Use of strong authentication encouraged.
rootpw mypasswd
# rootpw {crypt}ijFYNcSNctBYg
# The database directory MUST exist prior to running slapd AND
# should only be accessible by the slapd/tools. Mode 700 recommended.
directory /var/lib/ldap/domain1-it
# Indices to maintain
index objectClass,uid,uidNumber,gidNumber,memberUid eq
index cn,mail,surname,givenname eq,subinitial
index sambaSID eq
index sambaPrimaryGroupSID eq
index sambaDomainName eq
index default sub
updatedn "cn=Manager,dc=domain1,dc=it"
######## 2nd database
database ldbm
suffix "dc=domain2,dc=it"
rootdn "cn=Manager,dc=domain2,dc=it"
# Cleartext passwords, especially for the rootdn, should
# be avoided. See slappasswd(8) and slapd.conf(5) for details.
# Use of strong authentication encouraged.
rootpw mypasswd
# rootpw {crypt}ijFYNcSNctBYg
# The database directory MUST exist prior to running slapd AND
# should only be accessible by the slapd/tools. Mode 700 recommended.
directory /var/lib/ldap/domain2-it
# Indices to maintain
index objectClass,uid,uidNumber,gidNumber,memberUid eq
index cn,mail,surname,givenname eq,subinitial
index sambaSID eq
index sambaPrimaryGroupSID eq
index sambaDomainName eq
index default sub
updatedn "cn=Manager,dc=domain2,dc=it"
######## END OF SLAVE slapd.conf
thnks to all
Mario
____________________________________________________________
6X velocizzare la tua navigazione a 56k? 6X Web Accelerator di Libero!
Scaricalo su INTERNET GRATIS 6X http://www.libero.it