[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: Problems w/ Replication.
Hello Jason,
I have replication in operation but I am not fully finished with it. I
have a failover master and 6 slaves.
Here is what I would suggest, use your dn=manager entry for your
updatedn also. That will allow you to fight one problem at a time-
network connectivity, iptables, slapd.conf entries, etc. You KNOW that
your manager entry has all the rights necessary so ACCESS rights won't
be the problem at this stage.If you get stuck at this level, I have
found it VERY useful to run slapd and slurpd in debug mode.
Once you know that replication works using your manager dn, the next
step is to create another dn for your update daemon and give that entry
the proper permissions- this is the step that I am at. I haven't created
an update daemon entry to handle the updates and can't really give you
any info on that step- I just haven't spent the time on it.
Hope it helps.
On Sat, 2002-12-21 at 16:27, Jason C. Leach wrote:
> hi,
>
> For lack of a better place to post I'm using this list. If it's not the
> right one, please let me know.
>
> I'm trying to get a master-->slave replication going. But I keep getting
> the following error with slurpd:
> Error: ldap_simple_bind_s for 192.168.1.2:389 failed: Invalid credentials
>
> I have the following for replication:
> master:
> replica host=192.168.1.2:389
> binddn="cn=REPLICATOR,ou=Roles,dc=jsthrower,dc=com"
> bindmethod=simple credentials="123456"
> replogfile /var/log/openldap/replication.log
>
> slave:
> access to *
> by dn="cn=REPLICATOR,ou=Roles,dc=jsthrower,dc=com" write
>
> updatedn "cn=REPLICATOR,ou=Roles,dc=jsthrower,dc=com"
> updateref ldap://192.168.0.2
>
>
> And I have REPLICATOR setup as follows using LDIF files like these:
>
> roles.ldif
>
> dn: ou=Roles, dc=jsthrower, dc=com
> ou: Roles
> objectclass: organizationalUnit
> objectclass: domainRelatedObject
> associatedDomain: jsthrower.com
>
>
> rep.ldif
>
> dn: uid=REPLIC,ou=Roles,dc=jsthrower,dc=com
> uid: REPLIC
> cn: REPLICATOR
> objectClass: account
> objectClass: posixAccount
> objectClass: top
> objectClass: shadowAccount
> userPassword: 123456
> shadowLastChange: 11911
> shadowMax: 99999
> shadowWarning: 7
> shadowFlag: 134537832
> loginShell: /bin/false
> uidNumber: 1107
> gidNumber: 1000
> homeDirectory: /tmp
> gecos: LDAP Replicator Account
>
> Thanks,
> jason.
>
> --
> ......................
> ..... Jason C. Leach
> ..
>
> Current PGP/GPG Key ID: 43AD2024