On Feb 19, 2008 10:30 PM, Oren Laadan orenl@cs.columbia.edu wrote:
Hi,
Coincidentally I needed to do the same recently, and the after some back-and-forth the I reached a solution with "subordinate" glue: http://www.openldap.org/lists/openldap-software/200802/msg00128.html Basically, I used a "ldap" backend to connect to the "main" remote server, and a local "bdb" backend that is also subordinate.
Note, however, that this in my system this works if you want to add user and/or group entries, but it doesn't work so well for autofs maps (though I suspect that is because how autofs performs a search for maps of type "ldap").
Thanks for that! I actually have accomplished exactly what I set out to do. Basically, I took your config, made that my 'top level' ldap server, but for the ldap backend entry, I specify a different ldap server to relay to, one which holds another bdb backend, ldap backend to the remote server, and the translucent overlay configured.
My next question: can anyone on Oren's config that he posted in the link he provided as to how something like that could be configured with the translucent overlay on top of the ldap backend database, as well as the local bdb to serve out the subordinate suffix. I tried that, and it seems to throw slapd into an infinite loop (which I saw in a number of scenarios with other related configs that I tried).
Thanks for the help so far!