Hello. I'm trying to set up my ldap replication, but it seems semi-functional. i have two backend definded in my slapd.conf. The replication is made without problems in the first backend, but this not happends for the second.
Before i have definded only one backend and the replication go fine. When i just set up my second backend with its replication then first is become unfunctional.
my master slapd.conf is
include /etc/ldap/schema/core.schema include /etc/ldap/schema/cosine.schema include /etc/ldap/schema/nis.schema include /etc/ldap/schema/inetorgperson.schema
schemacheck on
pidfile /var/run/slapd/slapd.pid
argsfile /var/run/slapd.args
loglevel 0
modulepath /usr/lib/ldap moduleload back_bdb
backend bdb checkpoint 512 30
# here starts my second backend #++++++++++++++++++++++++++++++++++++++++++++++++++# database bdb
suffix "ou=bdt,dc=casa,dc=priv"
directory "/var/lib/ldap/bdt"
rootdn "cn=admin,ou=bdt,dc=casa,dc=priv" rootpw {SSHA}xxxxxxxxxxxxxxxxxxxxxxxxxxx
index objectClass eq index mail,sn,cn eq,sub,pres lastmod on
replogfile /var/lib/ldap/bdt/replog
replica uri=ldap://p3.casa.priv:389 bindmethod=simple binddn="cn=rep,ou=bdt,dc=casa,dc=priv" credentials=secret2
access to attrs=userPassword by dn="cn=admin,ou=bdt,dc=casa,dc=priv" write by anonymous auth by self write by * none access to dn.base="" by * read
access to * by dn="cn=admin,ou=bdt,dc=casa,dc=priv" write by * read #++++++++++++++++++++++++++++++++++++++++++++++++++#
#here starts my firts backend #root of my directory database bdb
suffix "dc=casa,dc=priv"
directory "/var/lib/ldap"
index objectClass eq
lastmod on
access to attrs=userPassword by dn="cn=admin,dc=casa,dc=priv" write by anonymous auth by self write by * none
access to dn.base="" by * read
access to * by dn="cn=admin,dc=casa,dc=priv" write by * read
replogfile /var/lib/ldap/replog
replica uri=ldap://p3.casa.priv:389 bindmethod=simple binddn="cn=rep,dc=casa,dc=priv" credentials=secret
my slave slapd.conf
include /etc/ldap/schema/core.schema include /etc/ldap/schema/cosine.schema include /etc/ldap/schema/nis.schema include /etc/ldap/schema/inetorgperson.schema
schemacheck on
pidfile /var/run/slapd/slapd.pid
argsfile /var/run/slapd.args
loglevel 0
modulepath /usr/lib/ldap moduleload back_bdb
backend bdb checkpoint 512 30
# my second backend #++++++++++++++++++++++++++++++++++++++++++++++++++# database bdb suffix "ou=bdt,dc=casa,dc=priv" directory "/var/lib/ldap/bdt"
rootdn "cn=admin,ou=bdt,dc=casa,dc=priv" rootpw {SSHA}xxxxxxxxxxxxxxxxxxxxxxxxx
index objectClass eq index mail,sn,cn eq,sub,pres
lastmod on
updatedn "cn=rep,ou=bdt,dc=casa,dc=priv" updateref ldap://amd.casa.priv:389
access to attrs=userPassword by dn="cn=admin,ou=bdt,dc=casa,dc=priv" write by dn="cn=rep,ou=bdt,dc=casa,dc=priv" write by anonymous auth by self write by * none
access to dn.base="" by * read
access to * by dn="cn=admin,ou=bdt,dc=casa,dc=priv" write by dn="cn=rep,ou=bdt,dc=casa,dc=priv" write by * read #++++++++++++++++++++++++++++++++++++++++++++++++++#
#my first backend database bdb
suffix "dc=casa,dc=priv"
directory "/var/lib/ldap"
index objectClass eq
lastmod on
access to attrs=userPassword by dn="cn=admin,dc=casa,dc=priv" write by dn="cn=rep,dc=casa,dc=priv" write by anonymous auth by self write by * none
access to dn.base="" by * read
access to * by dn="cn=admin,dc=casa,dc=priv" write by dn="cn=rep,dc=casa,dc=priv" write by * read
updatedn "cn=rep,dc=casa,dc=priv" updateref ldap://amd.casa.priv:389
i also tried to define the suffix attribute in the replica stanzas of both dc=casa,dc=priv and ou=bdt,dc=casa,dc=priv backends but without lucky.
cn=rep,ou=bdt,dc=casa,dc=priv and cn=rep,dc=casa,dc=priv have write privileges, i test it. I don't understand why in my fist backend the replication was broken
any hepl helps me much. regards.
__________________________________________________ Correo Yahoo! Espacio para todos tus mensajes, antivirus y antispam ¡gratis! ¡Abrí tu cuenta ya! - http://correo.yahoo.com.ar
--On Sunday, October 29, 2006 12:26 AM -0300 Sergio Shevtsov sergioshev@yahoo.com.ar wrote:
Hello. I'm trying to set up my ldap replication, but it seems semi-functional. i have two backend definded in my slapd.conf. The replication is made without problems in the first backend, but this not happends for the second.
Before i have definded only one backend and the replication go fine. When i just set up my second backend with its replication then first is become unfunctional.
You don't specify what version of OpenLDAP you are using, but I'll guess OpenLDAP 2.3.28, because I'll assume you are very wise. Now, since you are using OpenLDAP 2.3.28, I'll assume you have heard of syncrepl, and understand it will do what you want very easily, and thus you should remove your slurpd configuration and switch to syncrepl. I'll also assume you have the ability to read the Admin guide, FAQ, and man pages, all of which can be found online at http://www.openldap.org/ for any basic questions you have about configuring syncrepl.
--Quanah
-- Quanah Gibson-Mount Principal Software Developer ITS/Shared Application Services Stanford University GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html
openldap-software@openldap.org
-
Quanah Gibson-Mount -
Sergio Shevtsov