Re: Sucking Replication

["Dieter Kluenter" <dieter@dkluenter.de>]

Hi,

Kevin Fries <kevin@hcico.com> writes:

> Dieter Kluenter wrote:
>
> |Kevin Fries <kevin@hcico.com> writes:

> |>Is it possible to have ServerB request updates from ServerA rather
> |>than having ServerA force updates to ServerB?
> |
> |
> |Yes, syncrepl with type=refreshOnly
>
> Hey thanks, I think
>
> I just went to the oLDAP site and read the "instructions".
>
> All I can say is WTF?  Is there any instructions in English?  Does
> anyone know of a simple howto using smaller, simpler words?

This is my configuration, the update interval is 1 hour

,----[ Slave configuration ]
| database        bdb
| suffix          "o=avci,c=de"
| rootdn          "cn=admin,o=avci,c=de"
| directory       /var/lib/openldap-data
| syncrepl rid=54
|       provider=ldap://marin.l4b.de:389
|         type=refreshOnly
|         interval=00:01:00:00
|         searchbase="ou=samba,o=avci,c=de"
|         scope=one
|         bindmethod=sasl
|         saslmech=DIGEST-MD5
|         authcid=netadmin
|         credentials=xxxx
|         updatedn=cn=smbadmin,o=avci,c=de
`----

,----[ Entry of netadmin on Master ]
| dn: cn=netAdmin,o=avci,c=de
| objectClass: person
| objectClass: extensibleObject
| cn: netAdmin
| sn: netAdmin
| uid: netadmin
| userPassword:(CLEARTEXT)
`----

,----[ relevant access rules on Master ]
| access  to dn.subtree="ou=Samba,o=avci,c=de"
|         by dn.exact="cn=netAdmin,o=avci,c=de" read
|         by dn.exact="cn=sambaAdmin,o=avci,c=de" write
`----

,----[ relevant access rules on Slave ]
| access to dn.subtree="ou=samba,o=avci,c=de"
|        by dn.exact="cn=smbadmin,o=avci,c=de" write
`----

-Dieter

-- 
Dieter Klünter | Systemberatung
http://www.dkluenter.de
GPG Key ID:01443B53