[Date Prev][Date Next] [Chronological] [Thread] [Top]

Updateref Ignored, Part Duex: The Final Chapter

To: openldap-software@OpenLDAP.org
Subject: Updateref Ignored, Part Duex: The Final Chapter
From: "Geoffrey L. Wright" <geoff@akwebart.com>
Date: Mon, 12 Aug 2002 09:36:45 -0800


Well, at least I hope this is the final chapter.

I'm still having some replication problems. With kind help from Kurt Zeilenga I came to understand that it is not a good idea to have my rootdn and updatedn be the same. So I've added a user for purposes of replication.

This works well on my master slapd server. I can now add/modify/delete users there and have changes successfully replicate the slave. But I am still have problems at the slave end. Basicly, when I try to add users using my new "Replicator" account on the slave the go strait to the database and ignore my updateref directive.

The Replicator on the master slapd server works perfectly, and just as I test I've ldapadd-ed entries to the master slapd server remotely from my test slave using the Replicator account. This seems to work fine.

I guess this issue is somewhat cosmetic at this point, since my ldap client refers strait to the master for adds and updates. But I'd still like to have some understanding of why this doesn't work...

Any hints or thoughts?  As always, all help is greatly appreciated.

My slapd.conf from the slave is below:

# $OpenLDAP: pkg/ldap/servers/slapd/slapd.conf,v 1.8.8.7 2001/09/27 20:00:31 kurt Exp $ # # See slapd.conf(5) for details on configuration options. # This file should NOT be world readable. # include /etc/openldap/schema/core.schema include /etc/openldap/schema/cosine.schema include /etc/openldap/schema/inetorgperson.schema include /etc/openldap/schema/nis.schema include /etc/openldap/schema/redhat/rfc822-MailMember.schema include /etc/openldap/schema/redhat/autofs.schema include /etc/openldap/schema/redhat/kerberosobject.schema

 # Now include the GCI SchoolAccess custom schema
 include         /etc/openldap/schema/schoolaccess-attributes.schema
 include         /etc/openldap/schema/schoolaccess-objectclasses.schema

 pidfile         //var/run/slapd.pid
 argsfile        //var/run/slapd.args

 #######################################################################
 # ldbm database definitions
 #######################################################################

# Example School District A DB database ldbm suffix "dc=distA,dc=schoolaccess,dc=net" rootdn "cn=Manager,dc=distA,dc=schoolaccess,dc=net" updatedn "cn=Replicator,dc=distA,dc=schoolaccess,dc=net" updateref "ldap://192.168.10.2"; rootpw secret directory /var/lib/ldap/distA index objectClass,uid,uidNumber,gidNumber,memberUid eq index cn,mail,surname,givenname eq,subinitial

 # Access control lists
 access to *
         by dn="cn=Replicator,dc=distA,dc=schoolaccess,dc=net" write
         by * read

Follow-Ups:
- Re: Updateref Ignored, Part Duex: The Final Chapter
  - From: Adam Williams <awilliam@whitemice.org>

Prev by Date: Re: TLS and more CN's
Next by Date: Re: Empty values in an attribute
Index(es):
- Chronological
- Thread