Hello,
I have two openldap servers, and have configured the master-slave synchronization, but have a problem:
When an entry in master server is changed it is automatically changed in the slave server. But, when an entry in slave server is changed it is not automatically changed in the master server.
In the slave server slapd.conf config file, I've set up “updateref ldap://192.168.100.11:389“ , the 192.168.100.11 is my master server.
The following is my configuration. Master Configuration: allow bind_v2 pidfile /var/run/openldap/slapd.pid argsfile /var/run/openldap/slapd.args access to * by * write database bdb suffix "dc=domain,dc=com" rootdn "cn=root,dc=domain,dc=com" overlay ppolicy rootpw {SSHA}DyNIn6rweGRnQP0ntGaZxynMllSA3/w4 directory /var/lib/ldap index objectClass eq,pres index ou,cn,mail,surname,givenname eq,pres,sub index uidNumber,gidNumber,loginShell eq,pres index uid,memberUid eq,pres,sub index nisMapName,nisMapEntry eq,pres,sub replogfile /var/lib/ldap/openldap-master-replog loglevel 4095 replica host=192.168.70.15:389 binddn="cn=sa,dc=domain,dc=com" bindmethod=simple credentials=miao3p
Slave Configuration: allow bind_v2 pidfile /var/run/openldap/slapd.pid argsfile /var/run/openldap/slapd.args access to * by * write database bdb suffix "dc=domain,dc=com" rootdn "cn=root,dc=domain,dc=com" overlay ppolicy rootpw {SSHA}sgBwprgmRciOEGTLjE5K9J22msm+U9NW directory /var/lib/ldap index objectClass eq,pres index ou,cn,mail,surname,givenname eq,pres,sub index uidNumber,gidNumber,loginShell eq,pres index uid,memberUid eq,pres,sub index nisMapName,nisMapEntry eq,pres,sub updatedn "cn=sa,dc=domain,dc=com" updateref ldap://192.168.100.11:389
Any ideas? Thank you very much.
Tian Zhiying
--On Friday, March 01, 2013 9:16 AM +0800 Tian Zhiying tianzy1225@thundersoft.com wrote:
Hello,
I have two openldap servers, and have configured the master-slave synchronization, but have a problem:
You clearly have not correctly configured your replica. I advise you to read the replication section of the admin guide. In particular, you are missing any syncrepl statement(s) for the replica, thus it still believes it is a master.
--Quanah
--
Quanah Gibson-Mount Sr. Member of Technical Staff Zimbra, Inc A Division of VMware, Inc. -------------------- Zimbra :: the leader in open source messaging and collaboration
--On Thursday, February 28, 2013 6:35 PM -0800 Quanah Gibson-Mount quanah@zimbra.com wrote:
You clearly have not correctly configured your replica. I advise you to read the replication section of the admin guide. In particular, you are missing any syncrepl statement(s) for the replica, thus it still believes it is a master.
Ugh, never mind, you are using slurpd. I don't know what god-forsaken release you are using, but whatever it is, is ancient and no longer supported. Please upgrade to a current supported release of OpenLDAP.
--Quanah
--
Quanah Gibson-Mount Sr. Member of Technical Staff Zimbra, Inc A Division of VMware, Inc. -------------------- Zimbra :: the leader in open source messaging and collaboration
Quanah,
Thanks for your reply.
I using "openldap-2.3.43" version now. It has not been supported ?
What to go upgrade? In the begining, I use "yum" method to install .
Tian Zhiying
From: Quanah Gibson-Mount Date: 2013-03-01 10:39 To: tianzy1225; openldap-technical Subject: Re: OpenLDAP slave-master synchronization problem --On Thursday, February 28, 2013 6:35 PM -0800 Quanah Gibson-Mount quanah@zimbra.com wrote:
You clearly have not correctly configured your replica. I advise you to read the replication section of the admin guide. In particular, you are missing any syncrepl statement(s) for the replica, thus it still believes it is a master.
Ugh, never mind, you are using slurpd. I don't know what god-forsaken release you are using, but whatever it is, is ancient and no longer supported. Please upgrade to a current supported release of OpenLDAP.
--Quanah
--
Quanah Gibson-Mount Sr. Member of Technical Staff Zimbra, Inc A Division of VMware, Inc. -------------------- Zimbra :: the leader in open source messaging and collaboration
On 1/3/2013 5:00 πμ, Tian Zhiying wrote:
I using "openldap-2.3.43" version now. It has not been supported ? What to go upgrade? In the begining, I use "yum" method to install .
Read:
http://www.mail-archive.com/openldap-technical@openldap.org/msg11414.html http://www.openldap.org/lists/openldap-technical/201212/msg00009.html http://www.openldap.org/lists/openldap-technical/201206/msg00051.html
More available on the net...
Regards, Nick
openldap-technical@openldap.org
-
Nick Milas -
Quanah Gibson-Mount -
Tian Zhiying