Hello All,
We are using openldap 2.4 in our systems with berkley DB as a backend.
Now, in current scenario we are using static LDAP i.e. /etc/openldap/slapd.conf and whenever we want to change any configuration parameter then we need to re-start LDAP. So, we decided to switch to dynamic LDAP i.e. using cn=config.
So, *my Q's is:* I made my system running on dynamic LDAP like from past 2 months and in this span of time i implemented several changes. Now, suppose today i plan to again move back to use static configuration - Will i able to save all my changes what i did in all this time? OR All changes made are lost?
If Lost - Is there any way to retrieve the changes which i made?
Please suggest.
Thanks and Regards, Gaurav Gugnani
Hi Gaurav dynamic changes you do in the cn=config subtree are saved to the ldif files in (usually) /etc/openldap/slapd.d and its subdirectories.
suomi
On 03/12/2012 08:44 AM, Gaurav Gugnani wrote:
Hello All,
We are using openldap 2.4 in our systems with berkley DB as a backend.
Now, in current scenario we are using static LDAP i.e. /etc/openldap/slapd.conf and whenever we want to change any configuration parameter then we need to re-start LDAP. So, we decided to switch to dynamic LDAP i.e. using cn=config.
So, *my Q's is:* I made my system running on dynamic LDAP like from past 2 months and in this span of time i implemented several changes. Now, suppose today i plan to again move back to use static configuration - Will i able to save all my changes what i did in all this time? OR All changes made are lost?
If Lost - Is there any way to retrieve the changes which i made?
Please suggest.
Thanks and Regards, Gaurav Gugnani
Thks anax, will surely test them up. And will contact you guys if i face any issues :)
On Mon, Mar 12, 2012 at 5:14 PM, anax anax@ayni.com wrote:
Hi Gaurav dynamic changes you do in the cn=config subtree are saved to the ldif files in (usually) /etc/openldap/slapd.d and its subdirectories.
suomi
On 03/12/2012 08:44 AM, Gaurav Gugnani wrote:
Hello All,
We are using openldap 2.4 in our systems with berkley DB as a backend.
Now, in current scenario we are using static LDAP i.e. /etc/openldap/slapd.conf and whenever we want to change any configuration parameter then we need to re-start LDAP. So, we decided to switch to dynamic LDAP i.e. using cn=config.
So, *my Q's is:*
I made my system running on dynamic LDAP like from past 2 months and in this span of time i implemented several changes. Now, suppose today i plan to again move back to use static configuration - Will i able to save all my changes what i did in all this time? OR All changes made are lost?
If Lost - Is there any way to retrieve the changes which i made?
Please suggest.
Thanks and Regards, Gaurav Gugnani
On 12/3/2012 9:44 πμ, Gaurav Gugnani wrote:
I made my system running on dynamic LDAP like from past 2 months and in this span of time i implemented several changes. Now, suppose today i plan to again move back to use static configuration - Will i able to save all my changes what i did in all this time? OR All changes made are lost?
If Lost - Is there any way to retrieve the changes which i made?
According to: http://www.openldap.org/lists/openldap-technical/201110/msg00212.html: "As far as the OpenLDAP Project is concerned, conversion from slapd.conf to slapd.d is a one-way trip. Migrate everything else forward."
For backing up you dynamic config: You can slapcat the config database (slapcat -n 0 -l config_current.ldif), keep it like that or change whatever and slapadd it back while the server is offline (slapadd -F /etc/ldap/slapd.d -n 0 -l config.ldif). You could also manually convert it to a slapd.conf (it should not be that difficult), although this is not encouraged. You may also want to read: http://www.openldap.org/lists/openldap-technical/201110/msg00212.html, http://www.openldap.org/lists/openldap-technical/201110/msg00251.html etc.
Since OpenLDAP is progressively moving away from slapd.conf, admins should progressively adapt to dynamic config. Nevertheless, experimentation is not prohibited!
Changes are never lost. Just backup/store/handle your config(s) appropriately.
Best regards, Nick
From: openldap-technical-bounces@OpenLDAP.org [mailto:openldap-technical-bounces@OpenLDAP.org] On Behalf Of Gaurav Gugnani Sent: Monday, March 12, 2012 3:44 AM To: openldap-technical@openldap.org Subject: Dynamic to Static LDAP
Hello All,
We are using openldap 2.4 in our systems with berkley DB as a backend.
Now, in current scenario we are using static LDAP i.e. /etc/openldap/slapd.conf and whenever we want to change any configuration parameter then we need to re-start LDAP. So, we decided to switch to dynamic LDAP i.e. using cn=config.
So, my Q's is: I made my system running on dynamic LDAP like from past 2 months and in this span of time i implemented several changes. Now, suppose today i plan to again move back to use static configuration - Will i able to save all my changes what i did in all this time? OR All changes made are lost?
If Lost - Is there any way to retrieve the changes which i made?
Please suggest.
Thanks and Regards, Gaurav Gugnani
[Aaron Bennett]
What's your reason for going backwards? Have you had issues with cn=config?
Hello Aaron,
Its not needed now. Infact currently our system on static LDAP but before moving to dynamic, we covering all scenarios.
Suppose, we move to dynamic LDAP and in future if any requirements comes up which we don't know how to make it then we might want to jump to static again. (Only reason - planning for knowledge gap because we know how to play with static LDAP)
Thanks.
On Mon, Mar 12, 2012 at 11:02 PM, Aaron Bennett abennett@clarku.edu wrote:
*From:* openldap-technical-bounces@OpenLDAP.org [mailto: openldap-technical-bounces@OpenLDAP.org] *On Behalf Of *Gaurav Gugnani *Sent:* Monday, March 12, 2012 3:44 AM *To:* openldap-technical@openldap.org *Subject:* Dynamic to Static LDAP****
Hello All,
We are using openldap 2.4 in our systems with berkley DB as a backend.
Now, in current scenario we are using static LDAP i.e. /etc/openldap/slapd.conf and whenever we want to change any configuration parameter then we need to re-start LDAP. So, we decided to switch to dynamic LDAP i.e. using cn=config.
So, *my Q's is:*****
I made my system running on dynamic LDAP like from past 2 months and in this span of time i implemented several changes. Now, suppose today i plan to again move back to use static configuration - Will i able to save all my changes what i did in all this time? OR All changes made are lost?****
If Lost - Is there any way to retrieve the changes which i made? ****
Please suggest.****
Thanks and Regards,****
Gaurav Gugnani****
*[Aaron Bennett] *
*What’s your reason for going backwards? Have you had issues with cn=config?*****
openldap-technical@openldap.org
-
Aaron Bennett -
anax -
Gaurav Gugnani -
Nick Milas