[Date Prev][Date Next] [Chronological] [Thread] [Top]

using syncrepl for master slave relationship not working



Hi,
I've been trying to get a consumer server started so my client machines can connect to it and authenticate from a central repository, the consumer is taking from another "provider" server, they both share the same suffix, the provider is full of users, while the consumer has only the root of the tree added to it.
the provider slapd.conf is:
*****************************************
include /etc/openldap/schema/core.schema
include /etc/openldap/schema/cosine.schema
include /etc/openldap/schema/inetorgperson.schema
include /etc/openldap/schema/nis.schema
include /etc/openldap/schema/samba.schema
include /etc/openldap/schema/redhat/autofs.schema


sessionlog      123     100

allow bind_v2

pidfile         /var/run/slapd.pid
argsfile        /var/run/slapd.args
database        bdb
suffix          "dc=example,dc=mycompany,dc=com"
rootdn          "cn=Manager,dc=example,dc=mycompany,dc=com"
rootpw                  {SSHA}6knlCh6UiA1U2EH9zgVCYddyT5wp/e7I

# Mode 700 recommended.
directory       /var/lib/ldap

# Indices to maintain for this database
index objectClass                       eq,pres
index ou,cn,mail,surname,givenname      eq,pres,sub
index uidNumber,gidNumber,loginShell    eq,pres
index uid,memberUid                     eq,pres,sub
index nisMapName,nisMapEntry            eq,pres,sub
index sambaSID                  eq
index sambaPrimaryGroupSID      eq
index sambaDomainName           eq
****************************************************

the consumers slapd.conf is:
****************************************************
include         /etc/openldap/schema/core.schema
include         /etc/openldap/schema/cosine.schema
include         /etc/openldap/schema/inetorgperson.schema
include         /etc/openldap/schema/nis.schema
include         /etc/openldap/schema/samba.schema
include         /etc/openldap/schema/redhat/autofs.schema

allow bind_v2

pidfile         /var/run/slapd.pid
argsfile        /var/run/slapd.args

database        bdb
suffix              "dc=example,dc=mycompany,dc=com"
rootdn            "cn=Manager,dc=example,dc=mycompany,dc=com"
rootpw           secret

directory       /var/lib/ldap
# Indices to maintain for this database
index objectClass                       eq,pres
index ou,cn,mail,surname,givenname      eq,pres,sub
index uidNumber,gidNumber,loginShell    eq,pres
index uid,memberUid                     eq,pres,sub
index nisMapName,nisMapEntry            eq,pres,sub
index sambaSID                  eq
index sambaPrimaryGroupSID      eq
index sambaDomainName           eq

syncrepl rid=123
               provider=ldap://example.mycompany.com:389
               type=refreshOnly
               interval=00:00:01:00
               searchbase="dc=example,dc=mycompany,dc=com"
               filter="(objectClass=*)"
               scope=sub
               attrs="*"
               schemachecking=off
               updatedn="cn=manager,dc=example,dc=mycompany,dc=com"
               bindmethod=simple
               binddn="cn=manager,dc=example,dc=mycompany,dc=com"
               credentials=secret
***********************************************************

now as i read this should do replication, when i run the command "slapd -d256 -u ldap -h "ldap:///";, this is what i get:

[root@mc openldap]# slapd -d256 -u ldap -h "ldap:///";
@(#) $OpenLDAP: slapd 2.2.13 (Aug 19 2004 21:22:15) $
root@porky.build.redhat.com:/usr/src/build/440386-i386/BUILD/openldap-2.2.13/openldap-2.2.13/build-servers/servers/slapd
bdb_initialize: Sleepycat Software: Berkeley DB 4.2.52: (December 3, 2003)
bdb_initialize: Sleepycat Software: Berkeley DB 4.2.52: (December 3, 2003)
bdb_db_init: Initializing BDB database
slapd starting
request 1 done
<= bdb_equality_candidates: (entryUUID) index_param failed (18)
null_callback : error code 0x32
syncrepl_entry : be_modify failed (50)
<= bdb_equality_candidates: (entryUUID) index_param failed (18)
null_callback : error code 0x32
syncrepl_entry : be_add failed (50)
<= bdb_equality_candidates: (entryUUID) index_param failed (18)
null_callback : error code 0x32
syncrepl_entry : be_add failed (50)
<= bdb_equality_candidates: (entryUUID) index_param failed (18)
null_callback : error code 0x32
syncrepl_entry : be_add failed (50)
<= bdb_equality_candidates: (entryUUID) index_param failed (18)
null_callback : error code 0x32
syncrepl_entry : be_add failed (50)
<= bdb_equality_candidates: (entryUUID) index_param failed (18)
null_callback : error code 0x32
syncrepl_entry : be_add failed (50)
<= bdb_equality_candidates: (entryUUID) index_param failed (18)
null_callback : error code 0x32
<= bdb_equality_candidates: (entryUUID) index_param failed (18)
null_callback : error code 0x32
<= bdb_equality_candidates: (entryUUID) index_param failed (18)
null_callback : error code 0x32
<= bdb_equality_candidates: (entryUUID) index_param failed (18)
null_callback : error code 0x32
<= bdb_equality_candidates: (entryUUID) index_param failed (18)
null_callback : error code 0x32
<= bdb_equality_candidates: (entryUUID) index_param failed (18)
null_callback : error code 0x32
<= bdb_equality_candidates: (entryUUID) index_param failed (18)
null_callback : error code 0x32
<= bdb_equality_candidates: (entryUUID) index_param failed (18)
null_callback : error code 0x32
<= bdb_equality_candidates: (entryUUID) index_param failed (18)
null_callback : error code 0x32
<= bdb_equality_candidates: (entryUUID) index_param failed (18)
null_callback : error code 0x32
<= bdb_equality_candidates: (entryUUID) index_param failed (18)
null_callback : error code 0x32
syncrepl_entry : be_add failed (50)
<= bdb_equality_candidates: (entryUUID) index_param failed (18)
null_callback : error code 0x32
syncrepl_entry : be_add failed (50)
request 2 done
null_callback : error code 0x32
be_add failed (50)
null_callback : error code 0x32
request 1 done
request 2 done
request 1 done
request 2 done


and so on, what am i doing wrong, and what needs to be done to get replication started, i also need to get replication started with TLS, i can configure a single server to run TLS and everything fine, just how do you do it with replication involved???
please help me.
thanks.