[Date Prev][Date Next] [Chronological] [Thread] [Top]
replication help

To: openldap-software@OpenLDAP.org
Subject: replication help
From: Thomas_W_Collins@Dell.com
Date: Mon, 29 Jan 2001 11:40:15 -0600
Hi...I have been trying to get the OpenLDAP replication engine
to work with a single replication node.  

I start the slapd daemons on both the master and slave boxes.  I
then start slurpd as follows:

	sluprd -f slapd.conf -d 255

The output from the slurpd session says that the config file 
was read and parsed successfully.  I then run ldapadd with a
.ldif file.  The slurpd session prints out the following message:

begin replication thread for (10.3.3.100:389
begin replication thread for (10.3.3.100:389
new work in /usr/local/openldap-1.2.11/var/DAO/DAOrep.log
copy replog "/usr/local/openldap-1.2.11/var/DAO/DAOrep.log" to
"/usr/local/openldap-1.2.11/var/openldap-slurp/replica/slurpd.replog"
Initializing session to (10.3.3.100:389
ldap_create
bind to (10.3.3.100:389 as  cn=root,ou=DAO,dc=dell,dc=com (simple)
ldap_simple_bind_s
ldap_sasl_bind_s
ldap_sasl_bind
ldap_send_initial_request
ldap_new_connection
ldap_int_open_connection
ldap_connect_to_host
Initializing session to (10.3.3.100:389
ldap_create
bind to (10.3.3.100:389 as  cn=root,ou=DAO,dc=dell,dc=com (simple)
ldap_simple_bind_s
ldap_sasl_bind_s
ldap_sasl_bind
ldap_send_initial_request
ldap_new_connection
ldap_int_open_connection
ldap_connect_to_host
ldap_connect_to_host: getaddrinfo failed: Name or service not known
ldap_err2string
Error: ldap_simple_bind_s for (10.3.3.100:389 failed: Can't contact LDAP
server
ldap_unbind
ldap_connect_to_host: getaddrinfo failed: Name or service not known
ldap_err2string
Error: ldap_simple_bind_s for (10.3.3.100:389 failed: Can't contact LDAP
server
ldap_unbind


The slapd.conf file is below.  The slapd.conf file on the slave is identical
except the replogfile and replica host directives are deleted from the
slave's
slapd.conf file.

Any ideas?  

Thanks

Tom


#
# See slapd.conf(5) for details on configuration options.
# This file should NOT be world readable.
#
include         /usr/local/openldap-1.2.11/etc/openldap/schema/core.schema
include         /usr/local/openldap-1.2.11/etc/openldap/schema/cosine.schema
include
/usr/local/openldap-1.2.11/etc/openldap/schema/inetorgperson.schema

include         /usr/local/openldap-1.2.11/etc/openldap/schema/local.schema

schemacheck     on
#referral       ldap://root.openldap.org/

pidfile         /usr/local/openldap-1.2.11/etc/openldap/slapd.pid
argsfile        /usr/local/openldap-1.2.11/etc/openldap/slapd.args
#sasl-realm     wwfaweb.us.dell.com
#sasl-secprops  none
#sasl-host      wwfaweb.us.dell.com
#password-hash  DIGEST-MD5

#######################################################################
# ldbm database definitions
#######################################################################

database        ldbm

replica host=(10.3.3.100:389
  "binddn= cn=root,ou=DAO,dc=dell,dc=com"
  bindmethod=simple
  credentials=xxxxxxxx

replogfile /usr/local/openldap-1.2.11/var/DAO/DAOrep.log

suffix          "ou=DAO,dc=dell,dc=com"
rootdn          "cn=root,ou=DAO,dc=dell,dc=com"
# cleartext passwords, especially for the rootdn, should
# be avoid.  See slapd.conf(5) for details.
#
rootpw          xxxxxxxx
# database directory
# this directory MUST exist prior to running slapd AND
# should only be accessable by the slapd/tools  Mode 700 recommended.
directory       /usr/local/openldap-1.2.11/var/DAO
index           uid pres,eq,sub
index           cn,sn pres,eq,sub
index           objectclass eq

access to dn="(.*,)+facility=AUS,ou=DAO,dc=dell,dc=com"
       by dn="(.*,)+cn=Admin,ou=DAO,dc=dell,dc=com" write
       by dn="(.*,)+cn=SuperUser,ou=DAO,dc=dell,dc=com" write
       by dn="cn=GeneralUser,ou=DAO,dc=dell,dc=com" read
       by * search

access to dn="(.*,)+ou=DAO,dc=dell,dc=com"
       by dn="(.*,)+cn=Admin,ou=DAO,dc=dell,dc=com" write
       by dn="(.*,)+cn=SuperUser,ou=DAO,dc=dell,dc=com" write
       by * search

access to dn="(.*,)+ou=DAO,dc=dell,dc=com"
       by dn="^$$" none

access to attr=userPassword
         by dn="cn=root,ou=DAO,dc=dell,dc=com" write
         by dn="(.*,)+cn=Admin,ou=DAO,dc=dell,dc=com write
         by dn="(.*,)+cn=SuperUser,ou=DAO,dc=dell,dc=com write
         by * compare

database        ldbm

replica host=(10.3.3.100:389
   "binddn= cn=root,ou=DAO,dc=dell,dc=com"
   bindmethod=simple
   credentials=xxxxxxxx

replogfile /usr/local/openldap-1.2.11/var/NASH/NASHrep.log

suffix          "ou=NASH,dc=dell,dc=com"
rootdn          "cn=root,ou=DAO,dc=dell,dc=com"
rootpw          xxxxxxxx
directory       /usr/local/openldap-1.2.11/var/NASH
index           uid pres,eq,sub
index           cn,sn pres,eq,sub
index           objectclass eq

access to dn="(.*,)+ou=NASH,dc=dell,dc=com"
       by dn=(.*,)+ou=Admin,ou=NASH,dc=dell,dc=com write
       by dn=(.*,)+ou=SuperUser,ou=NASH,dc=dell,dc=com write
       by dn=(.*,)+ou=GeneralUser,ou=NASH,dc=dell,dc=com read
       by * search

access to dn="(.*,)+ou=NASH,dc=dell,dc=com"
       by dn="(.*,)+cn=Admin,ou=NASH,dc=dell,dc=com" write
       by dn="(.*,)+cn=SuperUser,ou=NASH,dc=dell,dc=com" write
       by * search

access to dn="(.*,)+ou=NASH,dc=dell,dc=com"
       by dn="^$$" none

access to attr=userPassword
       by dn="cn=root,ou=DAO,dc=dell,dc=com" write
       by dn="(.*,)+cn=Admin,ou=NASH,dc=dell,dc=com" write
       by dn="(.*,)+cn=SuperUser,ou=NASH,dc=dell,dc=com" write
       by * comparei
Prev by Date: Re: restric access to a group
Next by Date: RE: replication help
Index(es):
- Chronological
- Thread