On 9/22/2010 3:08 PM, Quanah Gibson-Mount wrote:
--On Wednesday, September 22, 2010 2:59 PM -0700 Craig White
<cwhite(a)ayr1.com> wrote:
> On 9/22/2010 2:29 PM, Quanah Gibson-Mount wrote:
>> --On Wednesday, September 22, 2010 2:09 PM -0700 Craig White
>> <cwhite(a)ayr1.com> wrote:
>>
>>>
>>>
>>> Still struggling with replication... I have the dumped the
>>> configuration
>>> of the two servers.
>>
>> I don't see the syncprov overlay loaded on your servers for the
>> primary hdb databases, which is what your logs complain about, so it
>> seems like things are behaving as expected.
>>
>> I.e., regardless of cn=config or slapd.conf, your configuration is
>> wrong.
> ----
> ok but I have been trying...
>
> cat sync_backend.ldif
> #
>
> dn: olcDatabase={1}hdb,cn=config
> changetype: modify
> add: olcRootDN
> olcRootDN: cn=admin,dc=ayr1,dc=local
> additional info: modify/add: olcRootDN: value #0 already exists
>
You're trying to add a value that already exists, just like the error
says.
----
# cat sync_3.ldif
#
dn: olcOverlay=syncprov,olcDatabase={1}hdb,cn=config
changetype: add
objectClass: olcOverlayConfig
objectClass: olcSyncProvConfig
olcOverlay: syncprov
#
root@srv1:/tmp/ldap-setup# ldapmodify -x -D cn=admin,cn=config -W -f
sync_3.ldif
Enter LDAP Password:
adding new entry "olcOverlay=syncprov,olcDatabase={1}hdb,cn=config"
# /etc/init.d/slapd restart
Stopping OpenLDAP: slapd.
Starting OpenLDAP: slapd.
So I am telling it to use syncprov overlay but still the problems exist
and the syncprov overlay doesn't show up...
# ldapsearch -xLLL -b cn=config -D cn=admin,cn=config -W olcDatabase={1}hdb
Enter LDAP Password:
dn: olcDatabase={1}hdb,cn=config
objectClass: olcDatabaseConfig
objectClass: olcHdbConfig
olcDatabase: {1}hdb
olcDbDirectory: /var/lib/ldap
olcSuffix: dc=ayr1,dc=local
olcAccess: {0}to
attrs=userPassword,shadowLastChange,sambaNTPassword,sambaLMPa
ssword by dn="cn=admin,dc=ayr1,dc=local" write by anonymous auth by
self writ
e by * none
olcAccess: {1}to dn.base="" by * read
olcAccess: {2}to * by dn="cn=admin,dc=ayr1,dc=local" write by * read
olcLastMod: TRUE
olcRootDN: cn=admin,dc=ayr1,dc=local
olcRootPW: ****
olcSyncrepl: {0}rid=003 provider=ldap://srv1.ayr1.local
binddn="cn=admin,dc=ay
r1,dc=local" bindmethod=simple credentials=**** searchbase="dc=ayr1,dc=lo
cal" type=refreshOnly interval=00:00:00:10 retry="5 5 300 5" timeout=1
olcSyncrepl: {1}rid=004 provider=ldap://srv2.ayr1.local
binddn="cn=admin,dc=ay
r1,dc=local" bindmethod=simple credentials=**** searchbase="dc=ayr1,dc=lo
cal" type=refreshOnly interval=00:00:00:10 retry="5 5 300 5" timeout=1
olcMirrorMode: TRUE
olcDbCheckpoint: 512 30
olcDbConfig: {0}set_cachesize 0 2097152 0
olcDbConfig: {1}set_lk_max_objects 1500
olcDbConfig: {2}set_lk_max_locks 1500
olcDbConfig: {3}set_lk_max_lockers 1500
olcDbIndex: uid pres,eq
olcDbIndex: cn,sn,mail pres,eq,approx,sub
olcDbIndex: objectClass eq
olcDbIndex: displayName pres,sub,eq
olcDbIndex: uidNumber,gidNumber,mailLocalAddress,uniqueMember eq
olcDbIndex: businessCategory sub
olcDbIndex: givenname eq,subinitial
olcDbIndex: memberUid,sambaSID,sambaPrimaryGroupSID,sambaDomainName eq
olcDbIndex: default sub
Craig