Hi,
I'm trying to set up SyncRepl between two servers. When the SyncRepl client connects and tries to start it logs:
| Entry (dc=example,dc=nl): object class 'organization' requires attribute 'o' | syncrepl_null_callback : error code 0x41 | syncrepl_entry: rid=000 be_add dc=example,dc=nl failed (65)
There is only one such entry in the db and it has an 'o' attribute:
| dn: dc=example,dc=nl | objectClass: top | objectClass: dcObject | objectClass: organization | dc: example | o: example.nl | structuralObjectClass: organization | [ .. create, modify, entry uuids etc ..]
What could i be missing here?
Regards, -Sander.
On 10/20/22 13:33, Sander Smeenk wrote:
I'm trying to set up SyncRepl between two servers. When the SyncRepl client connects and tries to start it logs:
| Entry (dc=example,dc=nl): object class 'organization' requires attribute 'o' | syncrepl_null_callback : error code 0x41 | syncrepl_entry: rid=000 be_add dc=example,dc=nl failed (65)
There is only one such entry in the db and it has an 'o' attribute:
How did you configure replication? Does the consumer replica bind to the provider as an entity which is allowed to read really everything?
Ciao, Michael.
Quoting Michael Ströder (michael@stroeder.com):
| Entry (dc=example,dc=nl): object class 'organization' requires attribute 'o' | syncrepl_null_callback : error code 0x41 | syncrepl_entry: rid=000 be_add dc=example,dc=nl failed (65) There is only one such entry in the db and it has an 'o' attribute:
How did you configure replication? Does the consumer replica bind to the provider as an entity which is allowed to read really everything?
Thanks. Turns out the user didn't have full read access on everything...
So it did see the dc=example,dc=nl but not the 'o' attributes. OpenLDAP is very confusing in it's debugging / error messages, but now it works!
openldap-technical@openldap.org
-
Michael Ströder -
Sander Smeenk