Hi there.
I'm using slapd 2.4.23-7.2 (from Debian Squeeze) and i'm unable to get monitoring running.
Here is my config:
file /etc/ldap/slapd.d/cn=config/olcDatabase={2}monitor.ldif dn: olcDatabase={2}monitor objectClass: olcDatabaseConfig objectClass: olcConfig objectClass: top olcDatabase: {2}monitor createTimestamp: 20120918124549Z olcAccess: {0}to * by peername.ip=127.0.0.1 read by peername.ipv6=::1 read by * none olcAddContentAcl: FALSE olcLastMod: TRUE olcMonitoring: FALSE olcReadOnly: FALSE olcMaxDerefDepth: 15 olcSyncUseSubentry: FALSE
In file /etc/ldap/slapd.d/cn=config/olcDatabase={1}hdb.ldif [...] olcMonitoring=TRUE [...]
The documentation isn't complete: www.openldap.org/devel/admin/monitoringslapd.html
I try:
root@server:~# ldapsearch -H ldapi:/// -Y EXTERNAL -s sub -b cn=Monitor SASL/EXTERNAL authentication started SASL username: gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth SASL SSF: 0 # extended LDIF # # LDAPv3 # base <cn=Monitor> with scope subtree # filter: (objectclass=*) # requesting: ALL #
# search result search: 2 result: 32 No such object
# numResponses: 1
So I guess the database for monitoring doesn't exist.
Any idea?
Best regards.
Am Wed, 19 Sep 2012 11:42:04 +0200 schrieb Arturo Borrero aborrero@cica.es:
Hi there.
I'm using slapd 2.4.23-7.2 (from Debian Squeeze) and i'm unable to get monitoring running.
Here is my config:
file /etc/ldap/slapd.d/cn=config/olcDatabase={2}monitor.ldif dn: olcDatabase={2}monitor objectClass: olcDatabaseConfig objectClass: olcConfig objectClass: top olcDatabase: {2}monitor createTimestamp: 20120918124549Z olcAccess: {0}to * by peername.ip=127.0.0.1 read by peername.ipv6=::1 read by
[...]
root@server:~# ldapsearch -H ldapi:/// -Y EXTERNAL -s sub -b cn=Monitor SASL/EXTERNAL authentication started
[...]
# numResponses: 1
So I guess the database for monitoring doesn't exist.
According to your access rules, only a tcp connection on ip address 127.0.0.1 has read access, ldapi:// is a connection via ipc socket. In order to test the availability of cn=Monitor try ldapsearch -x -H ldap://localhost -b "" -s base + | grep monitorContext
-Dieter
openldap-technical@openldap.org