Hello,
We've been testing out ldap replication and seem to have it
working fine.
However we've run into what seems to be a problem with
clients. In trying to update a password for an account from an LDAP
client, it looks like the update works if we point the client at the
master, but fails if we point the client at the slave.
The "client" is the unix passwd command that has been
configured to use the PADL pam and nss libraries. Logins queries and
everything read oriented work perfectly, but it looks like the client is
choking on the referral from the slave.
Do the PADL libraries follow referrals? If not, is there a
parameter we can put in the pam configuration to direct it to the master
instead of the slave? We'd like to have queries go to the replication
points, while updates get passed up to the master -- is there another way
to do this?