The error I was getting in the below mentioned case while running the
following comment on the slave was :
ldapsearch –x –D dc=my-domain,dc=com –w secret
–H ldap://masterip –b dc=my-domain,dc=com –s base contextCSN
SASL/GSSAPI authentication started
ldap_sasl_interactive_bind_s: Local error (-2)
Please provide me your valuable inputs to proceed further…….
Irfaz Sait
Software Engineer
Huawei Technologies
India Pvt. Ltd.
INNOVATION NEVER
STOPS!
This e-mail and attachments contain confidential information from
HUAWEI, which is intended only for the person or entity whose address is listed
above. Any use of the information contained herein in any way (including, but
not limited to, total or partial disclosure, reproduction, or dissemination) by
persons other than the intended recipient's) is prohibited. If you receive this
e-mail in error, please notify the sender by phone or email immediately and
delete it!
From: Irfaz
[mailto:
Sent: Tuesday, April 17, 2007
15:39
To: '
Subject: Sync repl
using syncrepl to
replicate will they the slave server automatically takes the contenst from
server or some commands has to be executed.????
I am not able to
get the replication
master : slapd.conf
include
/etc/openldap/schema/core.schema
include
/etc/openldap/schema/cosine.schema
include
/etc/openldap/schema/inetorgperson.schema
include
/etc/openldap/schema/nis.schema
database
bdb
suffix
"dc=my-domain,dc=com"
rootdn
"cn=Manager,dc=my-domain,dc=com"
rootpw
secret
directory
/usr/local/var/openldap-data
index
objectClass
eq,pres
index
ou,cn,mail,surname,givenname eq,pres,sub
index
uidNumber,gidNumber,loginShell eq,pres
index uid,memberUid
eq,pres,sub
index
nisMapName,nisMapEntry
eq,pres,sub
index
entryCSN,entryUUID eq
overlay syncprov
syncprov-checkpoint
100 10
syncprov-sessionlog
100
database monitor
loglevel 55
master :
example.ldif
dn: dc=my-domain,dc=com
dc: my-domain
objectClass:
organization
objectClass:
domainRelatedObject
objectClass:
dcObject
o: my-domain, Inc.
description:
location 1
associatedDomain:
my-domain.com
dn:
cn=Manager,dc=my-domain,dc=com
cn: Manager
objectClass: organizationalRole
dn:
ou=user,dc=my-domain,dc=com
ou: user
description:
location 1
objectClass:
organizationalUnit
dn:
cn=u1,ou=user,dc=my-domain,dc=com
objectClass:
inetOrgPerson
objectClass:
uidObject
objectClass:
organizationalPerson
objectClass: top
givenName: irfaz
uid: 1
mail:
1@gmail.com
sn:
SURNAMEu1
cn: u1
dn:
cn=u2,ou=user,dc=my-domain,dc=com
objectClass:
inetOrgPerson
objectClass:
uidObject
objectClass:
organizationalPerson
objectClass: top
givenName: sharfaz
uid: 2
mail:
2@gmail.com
sn: SURNAMEu2
cn: u2
/* Provider
slapd.conf */
include
/usr/local/etc/openldap/schema/core.schema
include
/usr/local/etc/openldap/schema/cosine.schema
include
/usr/local/etc/openldap/schema/inetorgperson.schema
include
/usr/local/etc/openldap/schema/nis.schema
allow bind_v2
pidfile
/var/run/slapd.pid
argsfile
/var/run/slapd.args
database
bdb
suffix
"dc=my-domain,dc=com"
rootdn
"cn=Manager,dc=my-domain,dc=com"
rootpw
secret
directory
/usr/local/var/openldap-data
index
objectClass
eq,pres
index
ou,cn,mail,surname,givenname eq,pres,sub
index
uidNumber,gidNumber,loginShell eq,pres
index
uid,memberUid
eq,pres,sub
index
nisMapName,nisMapEntry
eq,pres,sub
syncrepl rid=125
provider=ldap://localhost:9011
type=refreshAndPersist
interval=00:00:00:10
searchbase="dc=my-domain,dc=com"
filter="(objectClass=organizationalPerson)"
scope=sub
attrs="*"
schemachecking=off
bindmethod=simple
binddn="cn=Manager,dc=my-domain,dc=com"
credentials=secret
Advance thanks for
any comments given!!!!!!!!!!!!!!
Irfaz Sait
Software Engineer
Huawei Technologies
India Pvt. Ltd.
INNOVATION NEVER
STOPS!
This e-mail and attachments contain confidential information from
HUAWEI, which is intended only for the person or entity whose address is listed
above. Any use of the information contained herein in any way (including, but
not limited to, total or partial disclosure, reproduction, or dissemination) by
persons other than the intended recipient's) is prohibited. If you receive this
e-mail in error, please notify the sender by phone or email immediately and
delete it!