[Date Prev][Date Next] [Chronological] [Thread] [Top]

Replication problems w/2.0.3



I am having problems with replication using 2.0.3, between two like 
configured Solaris 8 systems.

My master slapd.conf contains:

  replogfile      /usr/local/var/replica.log
  replica host=neptune.driftwood.com:389 
	binddn="cn=admin,dc=driftwood,dc=com" 
	bindmethod=simple 
	credentials="nsp001"  

My slave slapd.conf contains:

  updatedn        cn=admin,dc=driftwood,dc=com

The binddn is the same as the rootdn.

My ACLs are as follows:

  access to attr=cn,uid,uidNumber,gidNumber,homeDirectory
        by self read
        by * read
        by dn="cn=admin,dc=driftwood,dc=com" write
 
  access to attr=shadowLastChange,shadowMin,shadowMax,shadowWarning
        by self read
        by * read
        by dn="cn=admin,dc=driftwood,dc=com" write
 
  access to attr=shadowInactive,shadowExpire,shadowFlag,memberUid
        by self read
        by * read
        by dn="cn=admin,dc=driftwood,dc=com" write
 
  access to attr=userPassword
        by self read
        by dn="cn=admin,dc=driftwood,dc=com" write

  access to *
        by self write
        by dn="cn=admin,dc=driftwood,dc=com" write
        by anonymous read
        by * read 

When I add something via 'ldapadd' on the master, the replicate.log is
created fine, but when I run 'slurpd' it is skipping all of the entries
with the error "not mine" :

  begin replication thread for neptune.driftwood.com:389
  Replica neptune.driftwood.com:389, skip repl record for dc=driftwood,dc=com (not mine)

Do I have things configured incorrectly? Examining the source of slurpd,
it seems that the function ismine() in ri.c is receiving a NULL value for
the "re" parameter. 

Hacking that function to return true enables the replication to go through, 
but then I see a "no user modification allowed" message (no matter what kind 
of data I am trying to add):

slurpd -d -1 output:

Error: ldap_add_s failed adding "Constraint violation": uid=foobar,ou=people,dc=driftwood,dc=com
ldap_err2string
Error: ldap operation failed, data written to "/usr/local/var/openldap-slurp/replica/neptune.driftwood.com:389.rej" 

slave syslog :

Sep 20 12:46:16 neptune slapd[451]: [ID 975460 local4.debug] conn=0 op=1 ADD dn="UID=FOOBAR,OU=PEOPLE,DC=DRIFTWOOD,DC=COM"
Sep 20 12:46:16 neptune slapd[451]: [ID 243833 local4.debug] send_ldap_result: conn=0 op=1 p=3
Sep 20 12:46:16 neptune slapd[451]: [ID 119927 local4.debug] send_ldap_result: 19::no user modification allowed
Sep 20 12:46:16 neptune slapd[451]: [ID 137417 local4.debug] send_ldap_response: msgid=2 tag=105 err=19
Sep 20 12:46:16 neptune slapd[451]: [ID 923667 local4.debug] conn=0 op=1 RESULT
tag=105 err=19 text=no user modification allowed 

I am rather confused here. Any help appreciated.

thanks
Phil Cordier

-- 
-=- Phil Cordier -=- IS Squared, Inc. -=- (425) 775-6495 -=- philc@is2inc.com