Hello -
I'm trying to implement an OpenLDAP infrastructure with one Master Server supporting 4 databases and two Shadow Servers using syncrepl replication. I'm using OpenLDAP 2.4.11 and Berkeley DB 4.6.21 as backend DB. Configuration looks like this:
Master:
#US database database bdb suffix "c=US" rootdn "cn=admin,c=US" rootpw **** directory /var/lib/ldap/US checkpoint 1024 5
index objectClass eq index mail,cn,ou,o,c eq,pres,sub index serialNumber eq index uid eq index entryUUID eq index entryCSN eq
overlay syncprov syncprov-checkpoint 10 5 syncprov-sessionlog 200
#GB database database bdb suffix "c=GB" rootdn "cn=admin,c=GB" rootpw ******* directory /var/lib/ldap/GB checkpoint 1024 5
index objectClass eq index mail,cn,ou,o,c eq,pres,sub index serialNumber eq index uid eq index entryUUID eq index entryCSN eq
overlay syncprov syncprov-checkpoint 10 5 syncprov-sessionlog 200
database bdb suffix "c=JP" rootdn "cn=admin,c=JP" rootpw ******** directory /var/lib/ldap/JP checkpoint 1024 5
index objectClass eq index mail,cn,ou,o,c eq,pres,sub index serialNumber eq index uid eq index entryUUID eq index entryCSN eq
overlay syncprov syncprov-checkpoint 10 5 syncprov-sessionlog 200
#Corp database database bdb suffix "o=My Company." rootdn "cn=admin, o=My Company." rootpw ******* directory /var/lib/ldap/dst checkpoint 1024 5
index objectClass eq index mail,cn,ou,o,c eq,pres,sub index serialNumber eq index uid eq index entryUUID eq index entryCSN eq
overlay syncprov syncprov-checkpoint 10 5 syncprov-sessionlog 200
Shadow:
#US database database bdb suffix "c=US" rootdn "cn=admin,c=US" rootpw ****** directory /var/lib/ldap/US checkpoint 1024 5
index objectClass eq index mail,cn,ou,o,c eq,pres,sub index serialNumber eq index uid eq index entryUUID eq index entryCSN eq
# Syncrepl syncrepl rid=11 provider=ldap://master.server type=refreshAndPersist interval=00:00:01:00 searchbase="c=US" attrs="*,+" scope=sub schemachecking=off bindmethod=simple binddn="cn=admin,c=US" credentials=***** retry="60 10 300 +"
#GB database database bdb suffix "c=GB" rootdn "cn=admin,c=GB" rootpw ******* directory /var/lib/ldap/GB checkpoint 1024 5
index objectClass eq index mail,cn,ou,o,c eq,pres,sub index serialNumber eq index uid eq index entryUUID eq index entryCSN eq
# Syncrepl syncrepl rid=12 provider=ldap://master.server type=refreshAndPersist interval=00:00:01:00 searchbase="c=GB" attrs="*,+" scope=sub schemachecking=off bindmethod=simple binddn="cn=admin,c=GB" credentials=****** retry="60 10 300 +"
#JP database database bdb suffix "c=JP" rootdn "cn=admin,c=JP" rootpw ****** directory /var/lib/ldap/JP checkpoint 1024 5
index objectClass eq index mail,cn,ou,o,c eq,pres,sub index serialNumber eq index uid eq index entryUUID eq index entryCSN eq
# Syncrepl syncrepl rid=13 provider=ldap://master.server type=refreshAndPersist interval=00:00:01:00 searchbase="c=JP" attrs="*,+" scope=sub schemachecking=off bindmethod=simple binddn="cn=diradmin,c=JP" credentials=****** retry="60 10 300 +"
#Corp database database bdb suffix "o=My Company." rootdn "cn=admin, o=Company." rootpw ****** directory /var/lib/ldap/corp checkpoint 1024 5
index objectClass eq index mail,cn,ou,o,c eq,pres,sub index serialNumber eq index uid eq index entryUUID eq index entryCSN eq
# Syncrepl syncrepl rid=14 provider=ldap://master.server type=refreshAndPersist interval=00:00:01:00 searchbase="o=My Company." attrs="*,+" scope=sub schemachecking=off bindmethod=simple binddn="cn=admin, o=My Company." credentials=****** retry="60 10 300 +"
US Database has approximately 100000 records and GB Database has approximately 70000 records. After a month of piloting this infrastructure I noticed that shadows are missing about 10 records for US and GB database. Any idea what is wrong with this configuration and why not all records get populated from Master to Shadows?
Thanks.
US Database has approximately 100000 records and GB Database has approximately 70000 records. After a month of piloting this infrastructure I noticed that shadows are missing about 10 records for US and GB database. Any idea what is wrong with this configuration and why not all records get populated from Master to Shadows?
Thanks.
It's hard to say without knowing the entries and data, but you are two point release behind now that have had lots of replication fixes:
http://www.openldap.org/software/release/changes.html
What have you noticed on your logs?
Thanks.
There have been quite a few replication bugs that have been resolved since 2.4.11. ITS 5709 for instance and I am sure there are some others as well. I know many of these have been addressed in 2.4.12 and 2.4.13. If you have the option to upgrade then that might be the safest bet.
-----Original Message----- From: openldap-software-bounces+kris.burton=acision.com@OpenLDAP.org [mailto:openldap-software-bounces+kris.burton=acision.com@OpenLDAP.org] On Behalf Of Serge Dubrouski Sent: Monday, November 24, 2008 11:30 AM To: openldap-software@openldap.org Subject: syncrepl refreshAdnPersist
Hello -
I'm trying to implement an OpenLDAP infrastructure with one Master Server supporting 4 databases and two Shadow Servers using syncrepl replication. I'm using OpenLDAP 2.4.11 and Berkeley DB 4.6.21 as backend DB. Configuration looks like this:
Master:
#US database database bdb suffix "c=US" rootdn "cn=admin,c=US" rootpw **** directory /var/lib/ldap/US checkpoint 1024 5
index objectClass eq index mail,cn,ou,o,c eq,pres,sub index serialNumber eq index uid eq index entryUUID eq index entryCSN eq
overlay syncprov syncprov-checkpoint 10 5 syncprov-sessionlog 200
#GB database database bdb suffix "c=GB" rootdn "cn=admin,c=GB" rootpw ******* directory /var/lib/ldap/GB checkpoint 1024 5
index objectClass eq index mail,cn,ou,o,c eq,pres,sub index serialNumber eq index uid eq index entryUUID eq index entryCSN eq
overlay syncprov syncprov-checkpoint 10 5 syncprov-sessionlog 200
database bdb suffix "c=JP" rootdn "cn=admin,c=JP" rootpw ******** directory /var/lib/ldap/JP checkpoint 1024 5
index objectClass eq index mail,cn,ou,o,c eq,pres,sub index serialNumber eq index uid eq index entryUUID eq index entryCSN eq
overlay syncprov syncprov-checkpoint 10 5 syncprov-sessionlog 200
#Corp database database bdb suffix "o=My Company." rootdn "cn=admin, o=My Company." rootpw ******* directory /var/lib/ldap/dst checkpoint 1024 5
index objectClass eq index mail,cn,ou,o,c eq,pres,sub index serialNumber eq index uid eq index entryUUID eq index entryCSN eq
overlay syncprov syncprov-checkpoint 10 5 syncprov-sessionlog 200
Shadow:
#US database database bdb suffix "c=US" rootdn "cn=admin,c=US" rootpw ****** directory /var/lib/ldap/US checkpoint 1024 5
index objectClass eq index mail,cn,ou,o,c eq,pres,sub index serialNumber eq index uid eq index entryUUID eq index entryCSN eq
# Syncrepl syncrepl rid=11 provider=ldap://master.server type=refreshAndPersist interval=00:00:01:00 searchbase="c=US" attrs="*,+" scope=sub schemachecking=off bindmethod=simple binddn="cn=admin,c=US" credentials=***** retry="60 10 300 +"
#GB database database bdb suffix "c=GB" rootdn "cn=admin,c=GB" rootpw ******* directory /var/lib/ldap/GB checkpoint 1024 5
index objectClass eq index mail,cn,ou,o,c eq,pres,sub index serialNumber eq index uid eq index entryUUID eq index entryCSN eq
# Syncrepl syncrepl rid=12 provider=ldap://master.server type=refreshAndPersist interval=00:00:01:00 searchbase="c=GB" attrs="*,+" scope=sub schemachecking=off bindmethod=simple binddn="cn=admin,c=GB" credentials=****** retry="60 10 300 +"
#JP database database bdb suffix "c=JP" rootdn "cn=admin,c=JP" rootpw ****** directory /var/lib/ldap/JP checkpoint 1024 5
index objectClass eq index mail,cn,ou,o,c eq,pres,sub index serialNumber eq index uid eq index entryUUID eq index entryCSN eq
# Syncrepl syncrepl rid=13 provider=ldap://master.server type=refreshAndPersist interval=00:00:01:00 searchbase="c=JP" attrs="*,+" scope=sub schemachecking=off bindmethod=simple binddn="cn=diradmin,c=JP" credentials=****** retry="60 10 300 +"
#Corp database database bdb suffix "o=My Company." rootdn "cn=admin, o=Company." rootpw ****** directory /var/lib/ldap/corp checkpoint 1024 5
index objectClass eq index mail,cn,ou,o,c eq,pres,sub index serialNumber eq index uid eq index entryUUID eq index entryCSN eq
# Syncrepl syncrepl rid=14 provider=ldap://master.server type=refreshAndPersist interval=00:00:01:00 searchbase="o=My Company." attrs="*,+" scope=sub schemachecking=off bindmethod=simple binddn="cn=admin, o=My Company." credentials=****** retry="60 10 300 +"
US Database has approximately 100000 records and GB Database has approximately 70000 records. After a month of piloting this infrastructure I noticed that shadows are missing about 10 records for US and GB database. Any idea what is wrong with this configuration and why not all records get populated from Master to Shadows?
Thanks.
-- Serge Dubrouski.
This e-mail and any attachment is for authorised use by the intended recipient(s) only. It may contain proprietary material, confidential information and/or be subject to legal privilege. It should not be copied, disclosed to, retained or used by, any other party. If you are not an intended recipient then please promptly delete this e-mail and any attachment and all copies and inform the sender. Thank you.
openldap-software@openldap.org
-
Burton, Kris - Acision -
Gavin Henry -
Serge Dubrouski