[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Replication error: Invalid credentials



Thanks

I entered the following in to the slave db's:

dn: cn=replicator,o=domain.ca
objectClass: top
objectClass: organizationalRole
cn: replicator

dn: cn=replicator2,o=domainauth
objectClass: top
objectClass: organizationalRole
cn: replicator2

And getting the following error:
Error: ldap_simple_bind_s for ldap2-int.domain.ca:389 failed: Inappropriate authentication


Do I need to enter passwords in the above db's entries?

note: using openldap 2.1.29


Pierangelo Masarati wrote:

does each replicadn exist in each slave db?
do the credentials match?  Can you do a simple
bind e.g. via ldapsearch using those creds?

p.


Hi all,
Any ideas why I would get the following error when starting slurpd:

Error: ldap_simple_bind_s for ldap2-int.domain.ca:389 failed: Invalid
credentials


MASTER SLAPD.CONF ENTRIES: ####################################################################### # bdb#1 database definitions ####################################################################### database bdb suffix "o=domain.ca" rootdn "cn=root,o=domain.ca" rootpw xxx

directory       /domain/ldap-data

index   objectClass,uid,uidNumber,gidNumber,memberUid eq
index   cn,mail,surname,givenname                      eq,subinitial

replogfile /domain/ldap-slurp/domain.ca.replog
replica host=ldap2-int.domain.ca:389
        binddn="cn=replicator,o=domain.ca"
        bindmethod=simple credentials=secret

#######################################################################
# bdb#2 database definitions
#######################################################################
database        bdb
suffix          "o=domainauth"
rootdn          "cn=root,o=domainauth"
rootpw xxx

directory       /domain/ldap-data

index   objectClass,uid,uidNumber,gidNumber,memberUid eq
index   cn,mail,surname,givenname                     eq,subinitial


replogfile /domain/ldap-slurp/domainauth.replog replica host=ldap2-int.domain.ca:389 binddn="cn=replicator2,o=domainauth" bindmethod=simple credentials=secret


SLAVE SLAPD.CONF ENTRIES: ####################################################################### # bdb#1 database definitions ####################################################################### database bdb suffix "o=domain.ca" rootdn "cn=root,o=domain.ca" rootpw xxx

directory       /domain/ldap-data

index   objectClass,uid,uidNumber,gidNumber,memberUid, eq
index   cn,mail,surname,givenname                      eq,subinitial

updatedn "cn=replicator,o=domain.ca"
updateref ldap://ldap1-int.domain.ca/

access to dn=".*,o=domain.ca"
 by dn="cn=replicator,o=domain.ca" write
 by * read

#######################################################################
# bdb#2 database definitions
#######################################################################
database        bdb
suffix          "o=domainauth"
rootdn          "cn=root,o=domainauth"
rootpw xxx

directory       /domain/ldap-data

index   objectClass,uid,uidNumber,gidNumber,memberUid   eq
index   cn,mail,surname,givenname                       eq,subinitial

updatedn "cn=replicator2,o=domainauth"
updateref ldap://ldap1-int.domain.ca/

access to *
 by dn="cn=replicator2,o=domainauth" write
 by * read



Thanks in advance!




-- Scott Walker Unix Systems Administration Magma Communications Ltd.

613-228-3565
scott.walker@magma.ca