I am using openldap-2.4.11 version and trying to use N-way multimaster replication so that changes made to first server reflects to second and vice versa but with my current set up if i use syncprov overlay and syncrepl on both server then it doesn't allow me to make changes in any ldap server but if i configure syncprov overlay on one server and configure syncrepl on another server it allow me to make changes and as well reflect the changes to another however still i can't make changes to second ldap server my both server configuration is as follows. please let me know what is wrong with this configuration or what all changes to be made to running it.

 

Configuration on First  LDAP Server

 

allow bind_v2
include         /usr/local/openldap/etc/openldap/schema/core.schema
include        /usr/local/openldap/etc/openldap/schema/corba.schema
include        /usr/local/openldap/etc/openldap/schema/cosine.schema
include        /usr/local/openldap/etc/openldap/schema/nis.schema
include        /usr/local/openldap/etc/openldap/schema/inetorgperson.schema

pidfile         /usr/local/openldap/var/run/slapd.pid
argsfile        /usr/local/openldap/var/run/slapd.args

modulepath      /usr/local/openldap/libexec/openldap
moduleload syncprov
password-hash {SSHA}

database        hdb
suffix          "dc=***,dc=com"
rootdn          "cn=root,dc=***,dc=com"
rootpw          {SSHA}yZkqhHmELfmUTsaQyfxgXBqq95gugTA4
directory       /usr/local/openldap/var/openldap-data

index uid pres,eq
index cn,sn pres,eq,approx,sub
index   objectClass     eq
index entryCSN,entryUUID eq

syncrepl rid=001
provider=ldap://192.168.1.12
type=refreshAndPersist
retry="5 5 300 +"
searchbase="dc=***,dc=com"
attrs=*
binddn="cn=root,dc=***,dc=com"
credentials=secret

 

overlay syncprov
syncprov-checkpoint 50 10

database        monitor
loglevel 256

 

                                   Configuration on Second LDAP Server

allow bind_v2
include        /usr/local/openldap/etc/openldap/schema/core.schema
include        /usr/local/openldap/etc/openldap/schema/corba.schema
include        /usr/local/openldap/etc/openldap/schema/cosine.schema
include        /usr/local/openldap/etc/openldap/schema/nis.schema
include        /usr/local/openldap/etc/openldap/schema/inetorgperson.schema

pidfile         /usr/local/openldap/var/run/slapd.pid
argsfile        /usr/local/openldap/var/run/slapd.args

modulepath      /usr/local/openldap/libexec/openldap
moduleload syncprov
password-hash {SSHA}

database        hdb
suffix          "dc=***,dc=com"
rootdn          "cn=root,dc=***,dc=com"
rootpw          {SSHA}9nbNE9l1rTvPCoU95zgo6vVoL3nMRzMI
directory       /usr/local/openldap/var/openldap-data

index uid pres,eq
index cn,sn pres,eq,approx,sub
index   objectClass     eq
index entryCSN,entryUUID eq

syncrepl rid=001
 provider=ldap://192.168.1.8
 type=refreshAndPersist
 retry="5 5 300 +"
 searchbase="dc=***,dc=com"
 attrs=*
 binddn="cn=root,dc=***,dc=com"
 credentials=secret

 

overlay syncprov
syncprov-checkpoint 50 10

database monitor
loglevel 256

 

 

 Thanks Regards

 

  Piyush Joshi

  9415414376