[Date Prev][Date Next] [Chronological] [Thread] [Top]

N-Way Multimaster. No base DN returned from server.

To: openldap-technical@openldap.org
Subject: N-Way Multimaster. No base DN returned from server.
From: Arturo Borrero Gonzalez <cer.inet@linuxmail.org>
Date: Thu, 15 Dec 2011 00:59:01 +0100
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:from:date :x-google-sender-auth:message-id:subject:to:content-type :content-transfer-encoding; bh=TtHDz6Zvk9MG3ayCe29X0kjUxDVSpH8f5IIQk5IOiGE=; b=lKkI8xL82rFLAx9k85OCx3e0a1BvtRpJtlDtm/PyBgLCQVCB3nvlmhvMxKsBtMinF4 GXvIp2Mflw/H1k9VhWe/RwkNZy2V8H5NRIOmhms3h1NzeLdSevAjgXCAMcc45Yf9riOH //AZ/RbhGdbsqd8o384ChWaEfCUvno0Vfuk1I=
In-reply-to: <CAPfcJasXvkeztp_PiRJxJOs0mtOEFHQz+R6gU8yYJ=p7JC1wnQ@mail.gmail.com>
References: <CAPfcJasXvkeztp_PiRJxJOs0mtOEFHQz+R6gU8yYJ=p7JC1wnQ@mail.gmail.com>

Hi there.

I followed the documentation in openldap website for setting up a
N-Way multimaster LDAP cluster. I have two nodes, but I will be
expanding to 3 or 4 in a near future.
When doing an ldapsearch, I get all the server data, but when accesing
with ApacheDirectoryStudio (with same credentials) I get nothing.
Nothing is wrong in logfiles. I guess a problem in ACLs, but it
doesn't work even when binding as RootDN (and as seen in oficial
documentation, rootdn is over the scope of any ACL)

The replication system is working well, afaik.

I've readed folk with same problems, but not exactly; here:
http://www.openldap.org/lists/openldap-technical/201004/msg00195.html

Anyone could take a look on this?

Version: 2.4.23-7.2

My cfg (slapd.d over Debian Stable ):


dn: olcDatabase={1}hdb
objectClass: olcDatabaseConfig
objectClass: olcHdbConfig
olcDatabase: {1}hdb
olcDbDirectory: /var/lib/ldap
olcSuffix: dc=example,dc=es
olcLastMod: TRUE
olcRootDN: cn=admin,dc=example,dc=es
olcDbCheckpoint: 512 30
olcDbConfig: {0}set_cachesize 0 2097152 0
olcDbConfig: {1}set_lk_max_objects 1500
olcDbConfig: {2}set_lk_max_locks 1500
olcDbConfig: {3}set_lk_max_lockers 1500
structuralObjectClass: olcHdbConfig
olcRootPW: asdasd
olcLimits: dn.exact="cn=admin,dc=example,dc=es" time.soft=unlimited
time.hard=unl
 imited size.soft=unlimited size.hard=unlimited
olcSyncrepl: {0}rid=003 provider="ldaps://ldap1.example.es/"
binddn="cn=admin,dc=
 example,dc=es" bindmethod=simple credentials=asdasd se
 archbase="dc=example,dc=es" type=refreshOnly interval=00:00:00:10
retry="5 5 300
 5" timeout=1
olcSyncrepl: {1}rid=004 provider="ldaps://ldap2.example.es/"
binddn="cn=admin,dc=
 example,dc=es" bindmethod=simple credentials=asdasd se
 archbase="dc=example,dc=es" type=refreshOnly interval=00:00:00:10
retry="5 5 300
 5" timeout=1
olcMirrorMode: TRUE
olcDbIndex: objectClass,eduPersonEntitlement,memberUID,uid,mail eq
olcAccess: {0}to dn.base="dc=example,dc=es" by
dn="cn=admin,dc=example,dc=es" manage
olcAccess: {1}to dn.base="cn=Subschema" by * read


-- 
/* Arturo Borrero Gonzalez || cer.inet@linuxmail.org */
/* Use debian gnu/linux! Best OS ever! */

Follow-Ups:
- Re: N-Way Multimaster. No base DN returned from server.
  - From: Quanah Gibson-Mount <quanah@zimbra.com>

Prev by Date: Re: slapd-ldap as proxy to active directory
Next by Date: Re: N-Way Multimaster. No base DN returned from server.
Index(es):
- Chronological
- Thread