Hi i'm having a problem creating a slave slapd/slurpd
I can't get my master to generate a replog for some reason
Here's my config: ######################################################################## # Schema Settings include /etc/ldap/schema/core.schema include /etc/ldap/schema/cosine.schema include /etc/ldap/schema/misc.schema include /etc/ldap/schema/nis.schema include /etc/ldap/schema/inetorgperson.schema
# General Settings replogfile /var/lib/slapd/replica.log replica host=slapd-test.test.com:389 binddn="cn=admin,dc=test,dc=com" bindmethod=simple credentials=secret
pidfile /var/run/slapd/slapd.pid argsfile /var/run/slapd/slapd.args loglevel 1 modulepath /usr/lib/ldap moduleload back_bdb sizelimit 500 tool-threads 1 backend bdb checkpoint 512 30 database bdb
# Base LDAP address suffix "dc=test,dc=com"
# Where database is stored directory "/var/lib/ldap" dbconfig set_cachesize 0 2097152 0 dbconfig set_lk_max_objects 1500 dbconfig set_lk_max_locks 1500 dbconfig set_lk_max_lockers 1500 index objectClass eq lastmod on
# Include Access List include /etc/ldap/slapd.access ########################################################################
help appreciated thx
James Tran wrote:
Hi i'm having a problem creating a slave slapd/slurpd
I can't get my master to generate a replog for some reason
Here's my config: ######################################################################## # Schema Settings include /etc/ldap/schema/core.schema include /etc/ldap/schema/cosine.schema include /etc/ldap/schema/misc.schema include /etc/ldap/schema/nis.schema include /etc/ldap/schema/inetorgperson.schema
# General Settings replogfile /var/lib/slapd/replica.log replica host=slapd-test.test.com:389 binddn="cn=admin,dc=test,dc=com" bindmethod=simple credentials=secret
pidfile /var/run/slapd/slapd.pid argsfile /var/run/slapd/slapd.args loglevel 1 modulepath /usr/lib/ldap moduleload back_bdb sizelimit 500 tool-threads 1 backend bdb checkpoint 512 30 database bdb
# Base LDAP address suffix "dc=test,dc=com"
# Where database is stored directory "/var/lib/ldap" dbconfig set_cachesize 0 2097152 0 dbconfig set_lk_max_objects 1500 dbconfig set_lk_max_locks 1500 dbconfig set_lk_max_lockers 1500 index objectClass eq lastmod on
# Include Access List include /etc/ldap/slapd.access ########################################################################
help appreciated thx
nevermind my own stupid mistake... just some permissions issues sorry everyone
On 4/13/07, James Tran james@nttmcl.com wrote:
Hi i'm having a problem creating a slave slapd/slurpd
I can't get my master to generate a replog for some reason
Here's my config: # General Settings replogfile /var/lib/slapd/replica.log replica host=slapd-test.test.com:389 binddn="cn=admin,dc=test,dc=com" bindmethod=simple credentials=secret
pidfile /var/run/slapd/slapd.pid argsfile /var/run/slapd/slapd.args loglevel 1 modulepath /usr/lib/ldap moduleload back_bdb sizelimit 500 tool-threads 1 backend bdb checkpoint 512 30 database bdb
# Base LDAP address suffix "dc=test,dc=com"
# Where database is stored directory "/var/lib/ldap" dbconfig set_cachesize 0 2097152 0 dbconfig set_lk_max_objects 1500 dbconfig set_lk_max_locks 1500 dbconfig set_lk_max_lockers 1500 index objectClass eq lastmod on
replogfile goes in the DATABASE section of your config.
From man slapd.conf:
GENERAL DATABASE OPTIONS Options in this section only apply to the configuration file section for the database in which they are defined. They are supported by every type of backend. Note that the database and at least one suffix option are mandatory for each database.
--On Friday, April 13, 2007 11:27 AM -0700 James Tran james@nttmcl.com wrote:
Hi i'm having a problem creating a slave slapd/slurpd
I can't get my master to generate a replog for some reason
Here's my config: ######################################################################## # Schema Settings include /etc/ldap/schema/core.schema include /etc/ldap/schema/cosine.schema include /etc/ldap/schema/misc.schema include /etc/ldap/schema/nis.schema include /etc/ldap/schema/inetorgperson.schema
# General Settings replogfile /var/lib/slapd/replica.log replica host=slapd-test.test.com:389 binddn="cn=admin,dc=test,dc=com" bindmethod=simple credentials=secret
pidfile /var/run/slapd/slapd.pid argsfile /var/run/slapd/slapd.args loglevel 1 modulepath /usr/lib/ldap moduleload back_bdb sizelimit 500 tool-threads 1 backend bdb checkpoint 512 30 database bdb
# Base LDAP address suffix "dc=test,dc=com"
# Where database is stored directory "/var/lib/ldap" dbconfig set_cachesize 0 2097152 0 dbconfig set_lk_max_objects 1500 dbconfig set_lk_max_locks 1500 dbconfig set_lk_max_lockers 1500 index objectClass eq lastmod on
# Include Access List include /etc/ldap/slapd.access ########################################################################
help appreciated thx
What options are you using with slurpd?
In any case, I will note that slurpd is deprecated, and removed from the 2.4 release. People are highly encouraged to use syncrepl (the replacement for slurpd) instead, as that is the supported replication mechanism from 2.3 onward.
--Quanah
-- Quanah Gibson-Mount Senior Systems Software Developer ITS/Shared Application Services Stanford University GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html
Quanah Gibson-Mount wrote:
--On Friday, April 13, 2007 11:27 AM -0700 James Tran james@nttmcl.com wrote:
Hi i'm having a problem creating a slave slapd/slurpd
I can't get my master to generate a replog for some reason
Here's my config: ######################################################################## # Schema Settings include /etc/ldap/schema/core.schema include /etc/ldap/schema/cosine.schema include /etc/ldap/schema/misc.schema include /etc/ldap/schema/nis.schema include /etc/ldap/schema/inetorgperson.schema
# General Settings replogfile /var/lib/slapd/replica.log replica host=slapd-test.test.com:389 binddn="cn=admin,dc=test,dc=com" bindmethod=simple credentials=secret
pidfile /var/run/slapd/slapd.pid argsfile /var/run/slapd/slapd.args loglevel 1 modulepath /usr/lib/ldap moduleload back_bdb sizelimit 500 tool-threads 1 backend bdb checkpoint 512 30 database bdb
# Base LDAP address suffix "dc=test,dc=com"
# Where database is stored directory "/var/lib/ldap" dbconfig set_cachesize 0 2097152 0 dbconfig set_lk_max_objects 1500 dbconfig set_lk_max_locks 1500 dbconfig set_lk_max_lockers 1500 index objectClass eq lastmod on
# Include Access List include /etc/ldap/slapd.access ########################################################################
help appreciated thx
What options are you using with slurpd?
In any case, I will note that slurpd is deprecated, and removed from the 2.4 release. People are highly encouraged to use syncrepl (the replacement for slurpd) instead, as that is the supported replication mechanism from 2.3 onward.
--Quanah
-- Quanah Gibson-Mount Senior Systems Software Developer ITS/Shared Application Services Stanford University GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html
Well good thing you told me about syncrepl... i just saw slurpd in the manual first for replication so that's what i just started trying. Probably good to know it anyway but i'll fiddle with syncrepl Thanks. And also the slurpd is working fine now that i changed the replogfile path.
Quanah Gibson-Mount wrote:
--On Friday, April 13, 2007 11:27 AM -0700 James Tran james@nttmcl.com wrote:
Hi i'm having a problem creating a slave slapd/slurpd
I can't get my master to generate a replog for some reason
Here's my config: ######################################################################## # Schema Settings include /etc/ldap/schema/core.schema include /etc/ldap/schema/cosine.schema include /etc/ldap/schema/misc.schema include /etc/ldap/schema/nis.schema include /etc/ldap/schema/inetorgperson.schema
# General Settings replogfile /var/lib/slapd/replica.log replica host=slapd-test.test.com:389 binddn="cn=admin,dc=test,dc=com" bindmethod=simple credentials=secret
pidfile /var/run/slapd/slapd.pid argsfile /var/run/slapd/slapd.args loglevel 1 modulepath /usr/lib/ldap moduleload back_bdb sizelimit 500 tool-threads 1 backend bdb checkpoint 512 30 database bdb
# Base LDAP address suffix "dc=test,dc=com"
# Where database is stored directory "/var/lib/ldap" dbconfig set_cachesize 0 2097152 0 dbconfig set_lk_max_objects 1500 dbconfig set_lk_max_locks 1500 dbconfig set_lk_max_lockers 1500 index objectClass eq lastmod on
# Include Access List include /etc/ldap/slapd.access ########################################################################
help appreciated thx
What options are you using with slurpd?
In any case, I will note that slurpd is deprecated, and removed from the 2.4 release. People are highly encouraged to use syncrepl (the replacement for slurpd) instead, as that is the supported replication mechanism from 2.3 onward.
--Quanah
-- Quanah Gibson-Mount Senior Systems Software Developer ITS/Shared Application Services Stanford University GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html
Ok since you guys introduced me to syncrepl i've got a new problem Master seems to be up and fine but i'm having problems with the slave
i get this error when i run debug with slapd
line 34 (syncrepl ***) /etc/ldap/slapd.conf: line 34: Error: Malformed "syncrepl" line in slapd config file, missing provider searchbase. failed to add syncinfo slapd destroy: freeing system resources. slapd stopped.
Last time i checked i'm pretty sure the searchbase was directed right under the provider directive. Anything finicky about this i should know about?
###################### Slave slapd.conf ######################### # Where database is stored directory "/var/lib/ldap" dbconfig set_cachesize 0 2097152 0 dbconfig set_lk_max_objects 1500 dbconfig set_lk_max_locks 1500 dbconfig set_lk_max_lockers 1500 index objectClass eq lastmod on
rootdn cn=admin,dc=example,dc=com syncrepl rid=123 provider=ldap://ldap-master.example.com:389 searchbase="dc=example,dc=com" type=refreshOnly interval=01:00:00:00 bindmethod=simple binddn="cn=admin,dc=example,dc=com" credentials=secret
# Include Access List include /etc/ldap/slapd.access ###############################################################
--On Friday, April 13, 2007 12:53 PM -0700 James Tran james@nttmcl.com wrote:
Quanah Gibson-Mount wrote:
Ok since you guys introduced me to syncrepl i've got a new problem Master seems to be up and fine but i'm having problems with the slave
i get this error when i run debug with slapd
line 34 (syncrepl ***) /etc/ldap/slapd.conf: line 34: Error: Malformed "syncrepl" line in slapd
syncrepl rid=123 provider=ldap://ldap-master.example.com:389 searchbase="dc=example,dc=com" type=refreshOnly interval=01:00:00:00 bindmethod=simple binddn="cn=admin,dc=example,dc=com" credentials=secret
Recall that spacing is always important. Here's my (delta-)syncrepl config:
syncrepl rid=0 provider=ldap://ldap-master.stanford.edu:389 bindmethod=sasl saslmech=gssapi realm=stanford.edu searchbase="dc=stanford,dc=edu" logbase="cn=accesslog" logfilter="(&(objectClass=auditWriteObject)(reqResult=0))" schemachecking=on type=refreshAndPersist retry="60 +" syncdata=accesslog
--Quanah
-- Quanah Gibson-Mount Senior Systems Software Developer ITS/Shared Application Services Stanford University GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html
Quanah Gibson-Mount wrote:
--On Friday, April 13, 2007 12:53 PM -0700 James Tran james@nttmcl.com wrote:
Quanah Gibson-Mount wrote:
Ok since you guys introduced me to syncrepl i've got a new problem Master seems to be up and fine but i'm having problems with the slave
i get this error when i run debug with slapd
line 34 (syncrepl ***) /etc/ldap/slapd.conf: line 34: Error: Malformed "syncrepl" line in slapd
syncrepl rid=123 provider=ldap://ldap-master.example.com:389 searchbase="dc=example,dc=com" type=refreshOnly interval=01:00:00:00 bindmethod=simple binddn="cn=admin,dc=example,dc=com" credentials=secret
Recall that spacing is always important. Here's my (delta-)syncrepl config:
syncrepl rid=0 provider=ldap://ldap-master.stanford.edu:389 bindmethod=sasl saslmech=gssapi realm=stanford.edu searchbase="dc=stanford,dc=edu" logbase="cn=accesslog" logfilter="(&(objectClass=auditWriteObject)(reqResult=0))" schemachecking=on type=refreshAndPersist retry="60 +" syncdata=accesslog
--Quanah
-- Quanah Gibson-Mount Senior Systems Software Developer ITS/Shared Application Services Stanford University GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html
hmm well i had adjusted my slapd.conf and added the line:
updatedn="cn=admin,dc=example,dc=com"
i didn't see that listed anywhere as necessary on the guides but i found it as an example somewhere on some random site. Once i put that in it started up fine. Is that normal?
James Tran wrote:
hmm well i had adjusted my slapd.conf and added the line:
updatedn="cn=admin,dc=example,dc=com"
i didn't see that listed anywhere as necessary on the guides but i found it as an example somewhere on some random site. Once i put that in it started up fine. Is that normal?
That's quite a good habit, indeed. I suggest you keep following that random site instead of seeking qualified help on this list.
p.
Ing. Pierangelo Masarati OpenLDAP Core Team
SysNet s.r.l. via Dossi, 8 - 27100 Pavia - ITALIA http://www.sys-net.it --------------------------------------- Office: +39 02 23998309 Mobile: +39 333 4963172 Email: pierangelo.masarati@sys-net.it ---------------------------------------
Pierangelo Masarati wrote:
James Tran wrote:
hmm well i had adjusted my slapd.conf and added the line:
updatedn="cn=admin,dc=example,dc=com"
i didn't see that listed anywhere as necessary on the guides but i found it as an example somewhere on some random site. Once i put that in it started up fine. Is that normal?
That's quite a good habit, indeed. I suggest you keep following that random site instead of seeking qualified help on this list.
p.
Ing. Pierangelo Masarati OpenLDAP Core Team
SysNet s.r.l. via Dossi, 8 - 27100 Pavia - ITALIA http://www.sys-net.it
Office: +39 02 23998309 Mobile: +39 333 4963172 Email: pierangelo.masarati@sys-net.it
yeah i'd like to try it the proper way that's why i was asking. slapd just kept spewing out the same error without that line though
--On Friday, April 13, 2007 1:12 PM -0700 James Tran james@nttmcl.com wrote:
updatedn="cn=admin,dc=example,dc=com"
i didn't see that listed anywhere as necessary on the guides but i found it as an example somewhere on some random site. Once i put that in it started up fine. Is that normal?
From the slapd.conf(5) man page:
updatedn <dn> This option is only applicable in a slave database updated using slurpd(8). It specifies the DN permitted to update (subject to access controls) the replica (typically, this is the DN slurpd(8) binds to update the replica). Generally, this DN should not be the same as the rootdn used at the master.
So do you really really think you should be using this?
I highly advise reading chapter 15 of the admin guide.
http://www.openldap.org/doc/admin23/syncrepl.html
--Quanah
-- Quanah Gibson-Mount Senior Systems Software Developer ITS/Shared Application Services Stanford University GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html
openldap-software@openldap.org
-
James Tran -
matthew sporleder -
Pierangelo Masarati -
Quanah Gibson-Mount