[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
OpenLDAP and Multimaster (again)
Hi there,
I've been trying to set up a 2 node
multimaster (OpenLDAP 2.0.27 / --enable-multimaster), using the decription
on "http://hannibal.solstice.nl/ldap/ldap-multiserver.html",
and one thread from this mailinglist http://www.openldap.org/lists/openldap-software/200208/msg00597.html.
However I fail to understand how to
create the two separate users that handle replication betwen the nodes.
Should they be present in the directory
or are they just defined like the rootdn, only in the slapd.conf ?
My directory is using following structure:
c=dk,
o=toldskat,
ou=import,
....
..
This is how I have attempted to implement
the multimaster scheme in my setup:
------- Node 1 (frontend1) ------------------------------------------------
access to *
by dn="uid=replicator1,
ou=Internet, ou=Users, ou=specificdata, ou=import, o=toldskat, c=DK"
write
by * write
access to *
by dn="uid=replicator2,
ou=Internet, ou=Users, ou=specificdata, ou=import, o=toldskat, c=DK"
write
by * write
updatedn "uid=replicator2,
ou=Internet, ou=Users, ou=specificdata, ou=import, o=toldskat, c=DK"
replica host=frontend2:389
binddn="uid=replicator1,
ou=Internet, ou=Users, ou=specificdata, ou=import, o=toldskat, c=DK"
bindmethod=simple
credentials=secret
------- EOF ---------------------------------------------------
------- Node 2 (frontend2) ------------------------------------------------
access to *
by dn="uid=replicator1,
ou=Internet, ou=Users, ou=specificdata, ou=import, o=toldskat, c=DK"
write
by * write
access to *
by dn="uid=replicator2,
ou=Internet, ou=Users, ou=specificdata, ou=import, o=toldskat, c=DK"
write
by * write
updatedn "uid=replicator1,
ou=Internet, ou=Users, ou=specificdata, ou=import, o=toldskat, c=DK"
replica host=frontend2:389
binddn="uid=replicator2,
ou=Internet, ou=Users, ou=specificdata, ou=import, o=toldskat, c=DK"
bindmethod=simple
credentials=secret
------- EOF ----------------------------------------------------
I used the terminology from the mailinglist:
<server 1 slapd.conf>
updatedn "cn=server 2,dc=your,dc=org"
replica host=server2.your.org
binddn="cn=server 1,dc=your,dc=org"
...
</server 1 slapd.conf>
<server 2 slapd.conf>
updatedn "cn=server 1,dc=your,dc=org"
replica host=server1.your.org
binddn="cn=server 2,dc=your,dc=org"
...
</server 2 slapd.conf>
-------------------------------------------------------------------------------------------------
I hope someone can help directly, or
maybe point to a tutorial somewhere :)
Kind regards,
Stefan Skotte