[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Replicating openldap
I have an openldap v1.2.4 as the master LDAP, and a v1.1.2 as the
slave, both on RedHat 5.2 Linux.
When a change is made to the master, it is propogated to the slave
but the change is not made at the slave. No error is returned, no *.rej
file(s). (In the slave's debug output I did notice a "9::referral"
return code. Hmmm.)
When a change is made to the slave, it is referred to the master.
No change is made in either one.
What am I doing wrong?
P.S.: I did check the FAQ-o-matic. Not much there.
-----------[ slapd.conf ]-------------------------------------
Note: the comments are removed for the
slave
instance.
#_______________________________________________________________________
_
#
# Filename: slpad.conf -- Primary LDAP configuration file.
#
# With options included for both master and slave instances.
#
#
include /usr/local/etc/ldap/slapd.at.conf
include /usr/local/etc/ldap/slapd.oc.conf
#
include /usr/local/etc/ldap/bb.at.conf
include /usr/local/etc/ldap/bb.oc.conf
#
schemacheck on
#
# Replication --
#
# Master only:
# referral ldap://ldap.itd.umich.edu
#
# Slave only: passes stuff on to the master LDAP.
# referral ldap://edas03.bbrown.com
referral edas03.bbrown.com
#
# Master only:
# replogfile /usr/local/ldap/slapd.replog
#
# ---------
#
# Allows the service to modify a COSNaming entry when it starts up.
#
access to attr=IOR by self write
access to attr=IOR by dn="cn=root, dc=bbrown, dc=com" write
access to attr=IOR by dn="cn=bb_admin, dc=bbrown, dc=com" write
access to attr=IOR by dn="cn=COSNaming, dc=bbrown, dc=com" write
access to attr=IOR by * read
#
#######################################################################
# ldbm database definitions
#######################################################################
#
# "database" is one of ldbm, shell, passwd. Not the variant of dbm.
#
database ldbm
suffix "dc=bbrown,dc=com"
directory /usr/local/ldap/dbfiles
rootdn "cn=root, dc=bbrown, dc=com"
rootpw secret
#
index cn,sn pres.eq.approx,sub
index objectclass pres,eq
index default none
#
#
defaultaccess read
#
access to attr=userpassword
by self write
by dn="cn=root, dc=bbrown, dc=com" write
by dn="cn=bb_admin, dc=bbrown, dc=com" write
by * compare
#
# The "binddn" must match the "updatedn" in the slave.
#
# Master only:
# replica host=edas02.bbrown.com
# binddn="cn=edas02,dc=bbrown,dc=com"
# bindmethod=simple credentials=secret
#
# Slave only: (The "access" allows replication to update entries)
updatedn "cn=edas02,dc=bbrown,dc=com"
access to * by dn="cn=edas02,dc=bbrown,dc=com" write
#
#
Jim Moe