[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Referral Error during Request Modify to Slave
Hi -
I've set up a master and a slave server.
Replica works fine, anything added to the master is sent to the slave.
A generic user can bind to master server and change own information
succesfully (named uid=generic,ou=Users,dc=usl11,dc=net)
but if the same user bind to slave server and want to modify the information
he can't
This is my situation:
OpenLDAP 2.1.22 on Mandrake 9.1 installed from source based on BDB 4.1.25
(idem from source....)
[root@prometeo root]# ldapmodify -D
"uid=generic,ou=Users,dc=usl11,dc=net" -H l
dap://master -w annalisa -x -f file.mod -P 3
modifying entry "uid=generic,ou=Users,dc=usl11,dc=net"
OK
[root@prometeo root]# ldapmodify -D
"uid=generic,ou=Users,dc=usl11,dc=net" -H l
dap://slave -w annalisa -x -f file.mod -P 3
modifying entry "uid=generic,ou=Users,dc=usl11,dc=net"
ldapmodify: update failed: uid=generic,ou=Users,dc=usl11,dc=net
ldap_modify: Referral (10)
referrals:
ldap://master:389/uid=generic,ou=Users,dc=usl11,dc=net
Idem with phpldapadmin, same errors.....
With LDAP Browser 2.8.2 all works fine.....that's the user can bind to slave
and modify his information. In the configuration of a connection in LDAP
Browser
i can specify if I want to Handle Referrals...This is the explanation ? If
yes how can I solve this situation with ldapmodify ?
What am I doing wrong?
-Roberto
>Example file.mod:
dn: uid=generic,ou=Users,dc=usl11,dc=net
changetype: modify
replace: description
description: Roberto Morelli
-----
>From master's slapd.conf:
database bdb
replica host=slave:389
binddn="cn=Manager,dc=usl11,dc=net"
bindmethod=simple
credentials=secret
replogfile "/usr/local/etc/openldap/replica.log"
suffix "dc=usl11,dc=net"
rootdn "cn=Manager,dc=usl11,dc=net"
rootpw secret
directory /usr/local/var/openldap-data
index objectClass eq
index primaryGroupID eq
index rid eq
index uid eq
index uidNumber eq
index gidNumber eq
index cn pres,sub,eq
index default sub
password-hash {CRYPT}
password-crypt-salt-format "$1$%.8s"
-----
>From slave's slapd.conf:
referral ldap://master:389
database bdb
suffix "dc=usl11,dc=net"
rootdn "cn=Manager,dc=usl11,dc=net"
# Cleartext passwords, especially for the rootdn, should
# be avoid. See slappasswd(8) and slapd.conf(5) for details.
# Use of strong authentication encouraged.
rootpw secret
readonly off
updatedn "cn=Manager,dc=usl11,dc=net"
updateref ldap://master:389
directory /usr/local/var/openldap-data
index objectClass eq
index primaryGroupID eq
index rid eq
index uid eq
index uidNumber eq
index gidNumber eq
index cn pres,sub,eq
index default sub
password-hash {CRYPT}
password-crypt-salt-format "$1$%.8s"
------
Thanks for your help!
--
Roberto Morelli <r.morelli@usl11.toscana.it>
System Administrator -- Azienda U.S.L. 11 Empoli (Italy)