On 9/17/2010 9:10 AM, Quanah Gibson-Mount wrote:
--On Wednesday, September 15, 2010 11:06 AM -0700 Craig White cwhite@ayr1.com wrote:
never did replication and certain to be something that I did but this is the type of error I am getting...
Sep 15 10:58:44 srv1 slapd[2766]: slap_client_connect: URI=ldap://srv2.ayr1.local DN="cn=admin,cn=config" ldap_sasl_bind_s failed (-1) Sep 15 10:58:44 srv1 slapd[2766]: do_syncrepl: rid=002 rc -1 retrying (4 retries left)
Obviously because I didn't tell it NOT to use SASL bind for replication.
That's the name of the function used to bind, it does not mean it's using SASL. -1 usually means it is unable to even open a port to the server you specified. Since you've failed to submit the related sycnrepl configuration, it's hard to say what's at issue.
---- I was sort of hoping to find out the command to get the actual configuration from the server but this is what I *think* is on the server...
dn: cn=config changetype: modify replace: olcServerID olcServerID: 1 ldap://srv1.ayr1.local olcServerID: 2 ldap://srv2.ayr1.local
dn: olcOverlay=syncprov,olcDatabase={0}config,cn=config changetype: add objectClass: olcOverlayConfig objectClass: olcSyncProvConfig olcOverlay: syncprov
dn: olcDatabase={0}config,cn=config changetype: modify add: olcSyncRepl olcSyncRepl: rid=001 provider=ldap://ldap01.example.com binddn="cn=admin,cn=config" bindmethod=simple credentials=***** searchbase="cn=config" type=refreshAndPersist retry="5 5 300 5" timeout=1 olcSyncRepl: rid=002 provider=ldap://ldap02.example.com binddn="cn=admin,cn=config" bindmethod=simple credentials=***** searchbase="cn=config" type=refreshAndPersist retry="5 5 300 5" timeout=1 - add: olcMirrorMode olcMirrorMode: TRUE
Which of course was a problem because the provider was wrong so I ran 'fix-1.ldif' #
dn: olcDatabase={0}config,cn=config changetype: modify delete: olcSyncRepl olcSyncRepl: rid=001 provider=ldap://ldap01.example.com binddn="cn=admin,cn=config" bindmethod=simple credentials=***** searchbase="cn=config" type=refreshAndPersist retry="5 5 300 5" timeout=1 olcSyncRepl: rid=002 provider=ldap://ldap02.example.com binddn="cn=admin,cn=config" bindmethod=simple credentials=***** searchbase="cn=config" type=refreshAndPersist retry="5 5 300 5" timeout=1
and then fix2.ldif #
dn: olcDatabase={0}config,cn=config changetype: modify add: olcSyncRepl olcSyncRepl: rid=001 provider=ldap://srv1.ayr1.local binddn="cn=admin,cn=config" bindmethod=simple credentials=***** searchbase="cn=config" type=refreshAndPersist retry="5 5 300 5" timeout=1 olcSyncRepl: rid=002 provider=ldap://srv2.ayr1.local binddn="cn=admin,cn=config" bindmethod=simple credentials=***** searchbase="cn=config" type=refreshAndPersist retry="5 5 300 5" timeout=1
Thanks
Craig