Hello -
I'm trying to implement an OpenLDAP infrastructure with one Master Server supporting 4 databases and two Shadow Servers using syncrepl replication. I'm using OpenLDAP 2.4.11 and Berkeley DB 4.6.21 as backend DB. Configuration looks like this:
Master:
#US database database bdb suffix "c=US" rootdn "cn=admin,c=US" rootpw **** directory /var/lib/ldap/US checkpoint 1024 5
index objectClass eq index mail,cn,ou,o,c eq,pres,sub index serialNumber eq index uid eq index entryUUID eq index entryCSN eq
overlay syncprov syncprov-checkpoint 10 5 syncprov-sessionlog 200
#GB database database bdb suffix "c=GB" rootdn "cn=admin,c=GB" rootpw ******* directory /var/lib/ldap/GB checkpoint 1024 5
index objectClass eq index mail,cn,ou,o,c eq,pres,sub index serialNumber eq index uid eq index entryUUID eq index entryCSN eq
overlay syncprov syncprov-checkpoint 10 5 syncprov-sessionlog 200
database bdb suffix "c=JP" rootdn "cn=admin,c=JP" rootpw ******** directory /var/lib/ldap/JP checkpoint 1024 5
index objectClass eq index mail,cn,ou,o,c eq,pres,sub index serialNumber eq index uid eq index entryUUID eq index entryCSN eq
overlay syncprov syncprov-checkpoint 10 5 syncprov-sessionlog 200
#Corp database database bdb suffix "o=My Company." rootdn "cn=admin, o=My Company." rootpw ******* directory /var/lib/ldap/dst checkpoint 1024 5
index objectClass eq index mail,cn,ou,o,c eq,pres,sub index serialNumber eq index uid eq index entryUUID eq index entryCSN eq
overlay syncprov syncprov-checkpoint 10 5 syncprov-sessionlog 200
Shadow:
#US database database bdb suffix "c=US" rootdn "cn=admin,c=US" rootpw ****** directory /var/lib/ldap/US checkpoint 1024 5
index objectClass eq index mail,cn,ou,o,c eq,pres,sub index serialNumber eq index uid eq index entryUUID eq index entryCSN eq
# Syncrepl syncrepl rid=11 provider=ldap://master.server type=refreshAndPersist interval=00:00:01:00 searchbase="c=US" attrs="*,+" scope=sub schemachecking=off bindmethod=simple binddn="cn=admin,c=US" credentials=***** retry="60 10 300 +"
#GB database database bdb suffix "c=GB" rootdn "cn=admin,c=GB" rootpw ******* directory /var/lib/ldap/GB checkpoint 1024 5
index objectClass eq index mail,cn,ou,o,c eq,pres,sub index serialNumber eq index uid eq index entryUUID eq index entryCSN eq
# Syncrepl syncrepl rid=12 provider=ldap://master.server type=refreshAndPersist interval=00:00:01:00 searchbase="c=GB" attrs="*,+" scope=sub schemachecking=off bindmethod=simple binddn="cn=admin,c=GB" credentials=****** retry="60 10 300 +"
#JP database database bdb suffix "c=JP" rootdn "cn=admin,c=JP" rootpw ****** directory /var/lib/ldap/JP checkpoint 1024 5
index objectClass eq index mail,cn,ou,o,c eq,pres,sub index serialNumber eq index uid eq index entryUUID eq index entryCSN eq
# Syncrepl syncrepl rid=13 provider=ldap://master.server type=refreshAndPersist interval=00:00:01:00 searchbase="c=JP" attrs="*,+" scope=sub schemachecking=off bindmethod=simple binddn="cn=diradmin,c=JP" credentials=****** retry="60 10 300 +"
#Corp database database bdb suffix "o=My Company." rootdn "cn=admin, o=Company." rootpw ****** directory /var/lib/ldap/corp checkpoint 1024 5
index objectClass eq index mail,cn,ou,o,c eq,pres,sub index serialNumber eq index uid eq index entryUUID eq index entryCSN eq
# Syncrepl syncrepl rid=14 provider=ldap://master.server type=refreshAndPersist interval=00:00:01:00 searchbase="o=My Company." attrs="*,+" scope=sub schemachecking=off bindmethod=simple binddn="cn=admin, o=My Company." credentials=****** retry="60 10 300 +"
US Database has approximately 100000 records and GB Database has approximately 70000 records. After a month of piloting this infrastructure I noticed that shadows are missing about 10 records for US and GB database. Any idea what is wrong with this configuration and why not all records get populated from Master to Shadows?
Thanks.