On Tue, Jun 12, 2007 at 09:23:52AM -0300, Jeronimo Zucco wrote:
Hi, list. I'm trying to implement syncrepl in my openldap 2.3.35 without sucess. Itryed many (I sed: MANY) times to slacat, slapadd to slave for syn ldap servers, but for some reason with I don't know, the slave lost the sync.
Then I have to do the same thing ate night:
- stop ldap master;
- slapcat master
- slapadd on the slave;
You don't need this slapcat/slapadd with syncrepl. It should be able to detect the consumer (slave) is empty and fetch all that is needed from the producer (master).
start master and start slave
This works about one hour, in the morning wasn't syncing again. If i
restart the slave ldap, then the changes on the master is replicated, but stops to sync "on line" after this.
I don't know what to do to solve this issue :-(
Follow up my ldap configuration (just about syncrepl):ldap master: # acls permits to user replicator to read all the database
You don't show these ACLs.
index objectClass,entryCSN,entryUUID eq overlay syncprov syncprov-checkpoint 100 10 syncprov-sessionlog 100 limits dn.exact="cn=replicator,dc=domain,dc=com" size.soft=unlimited size.hard=unlimited
ldap slave: syncrepl rid=1 provider=ldaps://master.domain.com:636 binddn="cn=replicator,dc=domain,dc=com" bindmethod=simple credentials=secret searchbase="dc=domain,dc=com" filter="(objectClass=*)" schemachecking=off scope=sub type=refreshAndPersist retry="60 +"
This seems correct. Maybe some debugging on both sides? Do you use some other overlay besides syncprov?