Re: OpenLdap ad replica server for Netscape Directory

[Clayton Donley <donley@postoffice.cig.mot.com>]

It appears that the OpenLDAP is rejecting your bind identity.  If it's
sending result code 0x09, that would be LDAP_PARTIAL_RESULTS.  Are you
sure that the Root or Replication user exists with that DN?  Check your
slapd.conf.  "cn=Directory Manager" is the default for Netscape, but
OpenLDAP defaults to "cn=root,....".

I know that I have tried previously to use UMICH as the consumer in a
replication agreement with a Netscape Directory Server v1.x and it worked
fine as long as the Netscape server didn't send "modify" type changes that
included an attribute with a NULL value.  If I find time, I'll see if this
is still an issue and perhaps patch OpenLDAP to handle this type of
request.

Clayton

> I'm trying hard to use openldap 1.0.1 (and previous) as a replica
> server for Netscape Directory Server 3.0. But with no luck so far. Is it
> possible ?? Looking in the logs I see that Netscape server can't (??) bind
> to tree and gets the following error
> 
> Sep  9 09:14:52 alf slapd[16358]: conn=19 op=0 BIND dn="cn=Directory Manager" method=128
> Sep  9 09:14:52 alf slapd[16358]: do_bind: version 2 dn (cn=Directory Manager) method 128
> Sep  9 09:14:52 alf slapd[16358]: send_ldap_result 9::
> Sep  9 09:14:52 alf slapd[16358]: conn=19 op=0 RESULT err=9 tag=97 nentries=0
> 
> Wojtek
> 
> -- 
> Wojciech Zwiefka
> E-mail:wojtekz@ue.eti.pg.gda.pl || http://www.ue.eti.pg.gda.pl/~wojtekz
> -------------------------------------------------------------------------
> UNIX is user friendly. It's just selective about who its friends are.
> 
>