[Date Prev][Date Next] [Chronological] [Thread] [Top]

slave slapd and referrals



Hello...

My question is about openldap and referrals. I am using
openldap 2.0.7 on Solaris 7.

I have one master slapd and one slave slapd set up.
Replication is provided for by the following lines in the
master's slapd.conf:

replica host=slave.myschool.edu "binddn=cn=root,dc=myschool,dc=edu" bindmethod=simple credentials=secret
replogfile /<openldap-path>/var/slapd.replog

and the following lines in the slave's slapd.conf:

updatedn "cn=root,dc=myschool,dc=edu"
updateref ldap://master.myschool.edu

Replication works fine when I do an ldapmodify on the master.  The
replication happens properly on the master and is then propagated
to the slave.

When I do an ldapmodify on the slave, my understanding is that slapd
should return a referral to the server specified by the "updateref"
line in the slave's slapd.conf.  However, slapd just goes ahead and
processes the modify and does not return a referral at all.  Looking
at the slave's logs after I do an ldapmodify from the command line,
I see:

Dec  1 17:13:06 slave.myschool.edu slapd[20797]: daemon: conn=4 fd=16 connection from IP=127.0.0.1:45340 (IP=129.1.1.0:389) accepted.
Dec  1 17:13:06 slave.myschool.edu slapd[20797]: conn=4 op=0 BIND dn="CN=ROOT,DC=MYSCHOOL,DC=EDU" method=128
Dec  1 17:13:06 slave.myschool.edu slapd[20797]: conn=4 op=0 RESULT tag=97 err=0 text=
Dec  1 17:13:13 slave.myschool.edu slapd[20797]: conn=4 op=1 MOD dn="uid=sh3,ou=people,dc=myschool,dc=edu"
Dec  1 17:13:14 slave.myschool.edu slapd[20797]: conn=4 op=1 RESULT tag=103 err=0 text=
Dec  1 17:13:16 slave.myschool.edu slapd[20797]: conn=4 op=2 UNBIND
Dec  1 17:13:16 slave.myschool.edu slapd[20797]: conn=-1 fd=16 closed

There's no activity on the master at all--the slave processes the modify
and seems not to care at all that it's supposed to return a referral
and let the master do the update.

I know that openldap tools don't chase referrals, but according to the
log the slave slapd is not even issuing a referral.

I will appreciate any input.  Thanks!

Steve Hodges
Georgia Tech