Hello.
Openldap 2.4.18, master-slave replication . Slave server successfully replicates all data, except hashed {sha} passwords. It is not problem with "access to attrs=userPassword " - I test ithis.
How I can solve it and sync passwords ?
[ slapd.conf ]
master server:
# index objectClass eq # overlay syncprov syncprov-checkpoint 100 10 syncprov-sessionlog 100 #
slave server:
syncrepl rid= <> provider=ldap://server:389 type=refreshOnly interval=00:00:05:00 searchbase="dc=company,dc=com" filter="(objectClass=*)" scope=sub attrs="*" # schemachecking=off bindmethod=simple binddn="cn=adminuser,dc=company,dc=com" credentials=company-pass ###
------------------------------------------------ policy for passwords:
objectClass: top objectClass: device objectClass: pwdPolicy pwdAttribute: userPassword pwdFailureCountInterval: 600 pwdGraceAuthNLimit: 1 pwdMaxFailure: 5 pwdInHistory: 6