Something isnt clear to me, on A I got the following slapd.conf:
database hdb suffix "dc=example,dc=com"
database ldap suffix "dc=B,ou=Subs,dc=example,dc=com" uri "ldap://B/" idassert-bind bindmethod=simple binddn="dc=example,dc=com" credentials=[password in clear text] authzID="dn:cn=Manager,dc=example,dc=com"
And on B I got the following setup:
database hdb suffix "dc=example,dc=com"
When I start slapd on A I get:
/etc/openldap/slapd.conf: line 87: <suffix> namingContext "dc=B,ou=Subs,dc=example,dc=com" already served by a preceding hdb database serving namingContext "dc=example,dc=com".
Isnt it possible to set a database as a branch of another ?
"Or Goshen" oberonc@gmail.com writes:
Hello
I have the following situation and would like to know your opinion on the matter:
I have 2 slapd servers A and B, both require simple authentication and are
not
open for anonymous access. What I would like to do is setup a node on A that would reference the root
of
B and would allow me to perform read/write to it.
I tried so far:
- Setup a "referral" objectClass on A in the following manner:
dn: dc=B,ou=Subservers,dc=example,dc=com dc: B objectClass: referral objectClass: extensibleObject ref: ldap://B/dc=example,dc=com
That didnt work since B requires authentication. So I tried this:
dn: dc=B,ou=Subservers,dc=example,dc=com dc: B objectClass: referral objectClass: extensibleObject ref:
ldap://??B??!bindname=cn=Manager%2cdc=example%2cdc=com/dc=example,dc=com
Didnt work either (authentication extension not supported ?).
- slapd apparently supports an "ldap" backend/database. Problem is that
there
is no real documentation here or here on how to set them up. Anybody ever setup such a database/backend ? does it support authentication ? any
examples
I can take a look at ?
I dont want to replication B on A, I just want to act as a proxy.
There is plenty of information on back-ldap available, http://www.openldap.org/faq/data/cache/532.html
For more details see man slapd-ldap(5), man slapd-meta(5) and try to glue databases, following configfuration is just a simple hint
database bdb suffix dc=A,ou=subservers,dc=example,dc=com ... subordinate
database ldap suffix ou=subservers,dc=example,dc=com uri ldap://host.example.com ...
-Dieter
-- Dieter Klünter | Systemberatung http://www.dkluenter.de GPG Key ID:8EF7B6C6