Hello Quanah,
no problems ;-)
Here is my config :
# AUTO-GENERATED FILE - DO NOT EDIT!! Use ldapmodify. # CRC32 afd35345 dn: olcDatabase={0}config objectClass: olcDatabaseConfig olcDatabase: {0}config olcMaxDerefDepth: 15 olcReadOnly: FALSE olcRootDN: cn=manager,cn=config olcRootPW:: secret olcSyncUseSubentry: FALSE olcMultiProvider: TRUE olcMonitoring: FALSE structuralObjectClass: olcDatabaseConfig entryUUID: 94f2e3c6-7209-102f-9dc5-7b3f1ec29d0e creatorsName: cn=config createTimestamp: 20101022092205Z olcAccess: {0}to * by dn.base="cn=replicator,o=mobistar.be" read by anonymous read by * none olcSyncrepl: {0}rid=001 provider="ldap://prodcorpldapm1.host.priv.orange.be:389/ ldaps://prodcorpldapm1.host.priv.orange.be:636/" bindmethod=simple timeout=1 network-timeout=0 binddn="cn=replicator,o=mobistar.be" credentials="secret" keepalive=0:0:0 filter="(objectclass=*)" searchbase="cn=config" scope=sub schemachecking=off type=refreshAndPersist retry="5 +" olcSyncrepl: {1}rid=002 provider="ldap://prodcorpldapm2.host.priv.orange.be:389/ ldaps://prodcorpldapm2.host.priv.orange.be:636/" bindmethod=simple timeout=1 network-timeout=0 binddn="cn=replicator,o=mobistar.be" credentials="secret" keepalive=0:0:0 filter="(objectclass=*)" searchbase="cn=config" scope=sub schemachecking=off type=refreshAndPersist retry="5 +" olcSyncrepl: {2}rid=003 provider="ldap://prodcorpldapm3.host.priv.orange.be:389/ ldaps://prodcorpldapm3.host.priv.orange.be:636/" bindmethod=simple timeout=1 network-timeout=0 binddn="cn=replicator,o=mobistar.be" credentials="secret" keepalive=0:0:0 filter="(objectclass=*)" searchbase="cn=config" scope=sub schemachecking=off type=refreshAndPersist retry="5 +" olcSyncrepl: {3}rid=004 provider="ldap://prodcorpldapm4.host.priv.orange.be:389/ ldaps://prodcorpldapm4.host.priv.orange.be:636/" bindmethod=simple timeout=1 network-timeout=0 binddn="cn=replicator,o=mobistar.be" credentials="secret" keepalive=0:0:0 filter="(objectclass=*)" searchbase="cn=config" scope=sub schemachecking=off type=refreshAndPersist retry="5 +" olcAddContentAcl: FALSE olcLastMod: FALSE entryCSN: 20210921161430.588403Z#000000#002#000000 modifiersName: cn=manager,cn=config modifyTimestamp: 20210921161430Z
# AUTO-GENERATED FILE - DO NOT EDIT!! Use ldapmodify. # CRC32 dc3815c8 dn: cn=config objectClass: olcGlobal cn: config olcConfigFile: /usr/app/LDAP/prod-corp-M/etc/slapd.conf olcConfigDir: /usr/app/LDAP/prod-corp-M/etc/slapd.d olcAllows: bind_v2 olcArgsFile: /usr/app/LDAP/prod-corp-M/var/run/slapd.args olcAttributeOptions: lang- olcAuthzPolicy: none olcConcurrency: 0 olcConnMaxPendingAuth: 1000 olcGentleHUP: FALSE olcIdleTimeout: 3600 olcIndexSubstrIfMaxLen: 4 olcIndexSubstrIfMinLen: 2 olcIndexSubstrAnyLen: 4 olcIndexSubstrAnyStep: 2 olcIndexIntLen: 4 olcLocalSSF: 71 olcPasswordHash: {SHA} olcPidFile: /usr/app/LDAP/prod-corp-M/var/run/slapd.pid olcPluginLogFile: /usr/app/LDAP/prod-corp-M/var/log/plugin.log olcReadOnly: FALSE olcSaslSecProps: noplain,noanonymous olcServerID: 1 ldap://prodcorpldapm1.host.priv.orange.be:389/ olcServerID: 2 ldap://prodcorpldapm2.host.priv.orange.be:389/ olcServerID: 3 ldap://prodcorpldapm3.host.priv.orange.be:389/ olcServerID: 4 ldap://prodcorpldapm4.host.priv.orange.be:389/ olcSockbufMaxIncoming: 262143 olcSockbufMaxIncomingAuth: 16777215 olcThreads: 16 olcTLSCACertificateFile: /usr/app/LDAP/prod-corp-M/etc/ssl/certs/cacert.pem olcTLSCertificateFile: /usr/app/LDAP/prod-corp-M/etc/ssl/certs/servercert.pem olcTLSCertificateKeyFile: /usr/app/LDAP/prod-corp-M/etc/ssl/keys/serverkey.pem olcTLSCRLCheck: none olcTLSVerifyClient: never olcToolThreads: 1 olcWriteTimeout: 0 structuralObjectClass: olcGlobal entryUUID: 94e68270-7209-102f-9db4-7b3f1ec29d0e creatorsName: cn=config createTimestamp: 20101022092205Z olcConnMaxPending: 100 olcLogLevel: 16384 entryCSN: 20210921152518.879862Z#000000#003#000000 modifiersName: cn=manager,cn=config modifyTimestamp: 20210921152518Z contextCSN: 20210720121843.555301Z#000000#000#000000 contextCSN: 20210921161242.889633Z#000000#001#000000 contextCSN: 20210921160000.938214Z#000000#002#000000 contextCSN: 20210921160015.487325Z#000000#003#000000 contextCSN: 20210921155930.648119Z#000000#004#000000
I tried a few as :
olcLogLevel from 256 to 16384 and vice-versa olcLastMod from TRUE to FALSE and vice-versa olcAddContentAd from TRUE to FALSE and vice-versa
Sometimes, when I did it on the first member it is replicated correctly but if I checked on the last member for which it was ok and decided to change it again, then it's not replicated back on the 3 others.
Before in my olcSyncrepl agreements I had URI with only "ldap://prodcorpldapm1.host.priv.orange.be:389/" and I read on internet that URI should be exactly as -h option of slapd start so I changed it as above but it didn't help. I had the same result in both cases.
Brgds & thx for help. Jean-Luc.