[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
sync replication problem..?
Debian Sarge
Openldap 2.2.26-4 (master)
Openldap 2.2.26.5 (slave)
Phpldapadmin.
If i create/modify (master) an ou in the master it replicates without a
problem.
If i modify/create (master) an userPassword its not replicated/sync in the
slave server.
if i try modify/create (slave) an userPassword i get this msg:
Could not perform ldap_modify operation.
LDAP said: Referral
Error number: 0x0a (LDAP_REFERRAL)
Description:
reading the slave logs (slave) i see:
"bdb_dn2id: get failed: DB_NOTFOUND: No matching key/data pair found
(-30990) " but then it says
"bdb_add: added id=0000002a
dn="uid=prueba22,ou=Informatica,ou=01Capital,dc=juscorrientes,dc=net"
Thanks for any help.
copy & paste an existing user (slave log):
Apr 10 17:41:35 msg slapd[5305]: connection_get(15): got connid=0
Apr 10 17:41:35 msg slapd[5305]: connection_read(15): checking for input on
id=0
Apr 10 17:41:35 msg slapd[5305]: ber_get_next on fd 15 failed errno=11
(Resource temporarily unavailable)
Apr 10 17:41:35 msg slapd[5305]: do_add
Apr 10 17:41:35 msg slapd[5305]: >>> dnPrettyNormal:
<uid=prueba22,ou=Informatica,ou=01Capital,dc=juscorrientes,dc=net>
Apr 10 17:41:35 msg slapd[5305]: <<< dnPrettyNormal:
<uid=prueba22,ou=Informatica,ou=01Capital,dc=juscorrientes,dc=net>,
<uid=prueba22,ou=informatica,ou=01capital,dc=juscorrientes,dc=net>
Apr 10 17:41:35 msg slapd[5305]: => get_ctrls
Apr 10 17:41:35 msg slapd[5305]: => get_ctrls: oid="2.16.840.1.113730.3.4.2"
(noncritical)
Apr 10 17:41:35 msg slapd[5305]: <= get_ctrls: n=1 rc=0 err=""
Apr 10 17:41:35 msg slapd[5305]: >>> dnPretty:
<cn=admin,dc=juscorrientes,dc=net>
Apr 10 17:41:35 msg slapd[5305]: <<< dnPretty:
<cn=admin,dc=juscorrientes,dc=net>
Apr 10 17:41:35 msg slapd[5305]: >>> dnNormalize:
<cn=admin,dc=juscorrientes,dc=net>
Apr 10 17:41:35 msg slapd[5305]: <<< dnNormalize:
<cn=admin,dc=juscorrientes,dc=net>
Apr 10 17:41:35 msg slapd[5305]: >>> dnPretty:
<cn=admin,dc=juscorrientes,dc=net>
Apr 10 17:41:35 msg slapd[5305]: <<< dnPretty:
<cn=admin,dc=juscorrientes,dc=net>
Apr 10 17:41:35 msg slapd[5305]: >>> dnNormalize:
<cn=admin,dc=juscorrientes,dc=net>
Apr 10 17:41:35 msg slapd[5305]: <<< dnNormalize:
<cn=admin,dc=juscorrientes,dc=net>
Apr 10 17:41:35 msg slapd[5305]: oc_check_required entry
(uid=prueba22,ou=Informatica,ou=01Capital,dc=juscorrientes,dc=net),
objectClass "posixAccount"
Apr 10 17:41:35 msg slapd[5305]: oc_check_required entry
(uid=prueba22,ou=Informatica,ou=01Capital,dc=juscorrientes,dc=net),
objectClass "shadowAccount"
Apr 10 17:41:35 msg slapd[5305]: oc_check_required entry
(uid=prueba22,ou=Informatica,ou=01Capital,dc=juscorrientes,dc=net),
objectClass "inetOrgPerson"
Apr 10 17:41:35 msg slapd[5305]: oc_check_allowed type "cn"
Apr 10 17:41:35 msg slapd[5305]: oc_check_allowed type "gidNumber"
Apr 10 17:41:35 msg slapd[5305]: oc_check_allowed type "givenName"
Apr 10 17:41:35 msg slapd[5305]: oc_check_allowed type "homeDirectory"
Apr 10 17:41:35 msg slapd[5305]: oc_check_allowed type "loginShell"
Apr 10 17:41:35 msg slapd[5305]: oc_check_allowed type "objectClass"
Apr 10 17:41:35 msg slapd[5305]: oc_check_allowed type "shadowExpire"
Apr 10 17:41:35 msg slapd[5305]: oc_check_allowed type "shadowFlag"
Apr 10 17:41:35 msg slapd[5305]: oc_check_allowed type "shadowInactive"
Apr 10 17:41:35 msg slapd[5305]: oc_check_allowed type "shadowMax"
Apr 10 17:41:35 msg slapd[5305]: oc_check_allowed type "shadowMin"
Apr 10 17:41:35 msg slapd[5305]: oc_check_allowed type "shadowWarning"
Apr 10 17:41:35 msg slapd[5305]: oc_check_allowed type "sn"
Apr 10 17:41:35 msg slapd[5305]: oc_check_allowed type "uid"
Apr 10 17:41:35 msg slapd[5305]: oc_check_allowed type "uidNumber"
Apr 10 17:41:35 msg slapd[5305]: oc_check_allowed type "userPassword"
Apr 10 17:41:35 msg slapd[5305]: oc_check_allowed type
"structuralObjectClass"
Apr 10 17:41:35 msg slapd[5305]: oc_check_allowed type "entryUUID"
Apr 10 17:41:35 msg slapd[5305]: oc_check_allowed type "creatorsName"
Apr 10 17:41:35 msg slapd[5305]: oc_check_allowed type "createTimestamp"
Apr 10 17:41:35 msg slapd[5305]: oc_check_allowed type "entryCSN"
Apr 10 17:41:35 msg slapd[5305]: oc_check_allowed type "modifiersName"
Apr 10 17:41:35 msg slapd[5305]: oc_check_allowed type "modifyTimestamp"
Apr 10 17:41:35 msg slapd[5305]:
bdb_dn2entry("uid=prueba22,ou=informatica,ou=01capital,dc=juscorrientes,dc=net")
Apr 10 17:41:35 msg slapd[5305]: => bdb_dn2id(
"uid=prueba22,ou=informatica,ou=01capital,dc=juscorrientes,dc=net" )
Apr 10 17:41:35 msg slapd[5305]: <= bdb_dn2id: get failed: DB_NOTFOUND: No
matching key/data pair found (-30990)
Apr 10 17:41:35 msg slapd[5305]: entry_decode:
"ou=Informatica,ou=01Capital,dc=juscorrientes,dc=net"
Apr 10 17:41:35 msg slapd[5305]: <=
entry_decode(ou=Informatica,ou=01Capital,dc=juscorrientes,dc=net)
Apr 10 17:41:35 msg slapd[5305]: => string_expand: pattern:
cn=admin,dc=juscorrientes,dc=net
Apr 10 17:41:35 msg slapd[5305]: => string_expand: expanded:
cn=admin,dc=juscorrientes,dc=net
Apr 10 17:41:35 msg slapd[5305]: => regex_matches: string:^I
cn=duplicador,dc=juscorrientes,dc=net
Apr 10 17:41:35 msg slapd[5305]: => regex_matches: rc: 1 no matches
Apr 10 17:41:35 msg slapd[5305]: => string_expand: pattern:
cn=duplicador,dc=juscorrientes,dc=net
Apr 10 17:41:35 msg slapd[5305]: => string_expand: expanded:
cn=duplicador,dc=juscorrientes,dc=net
Apr 10 17:41:35 msg slapd[5305]: => regex_matches: string:^I
cn=duplicador,dc=juscorrientes,dc=net
Apr 10 17:41:35 msg slapd[5305]: => regex_matches: rc: 0 matches
Apr 10 17:41:35 msg slapd[5305]: => string_expand: pattern:
cn=admin,dc=juscorrientes,dc=net
Apr 10 17:41:35 msg slapd[5305]: => string_expand: expanded:
cn=admin,dc=juscorrientes,dc=net
Apr 10 17:41:35 msg slapd[5305]: => regex_matches: string:^I
cn=duplicador,dc=juscorrientes,dc=net
Apr 10 17:41:35 msg slapd[5305]: => regex_matches: rc: 1 no matches
Apr 10 17:41:35 msg slapd[5305]: => string_expand: pattern:
cn=duplicador,dc=juscorrientes,dc=net
Apr 10 17:41:35 msg slapd[5305]: => string_expand: expanded:
cn=duplicador,dc=juscorrientes,dc=net
Apr 10 17:41:35 msg slapd[5305]: => regex_matches: string:^I
cn=duplicador,dc=juscorrientes,dc=net
Apr 10 17:41:35 msg slapd[5305]: => regex_matches: rc: 0 matches
Apr 10 17:41:35 msg slapd[5305]: => bdb_dn2id_add(
"uid=prueba22,ou=informatica,ou=01capital,dc=juscorrientes,dc=net",
0x0000002a )
Apr 10 17:41:35 msg slapd[5305]: <= bdb_dn2id_add: 0
Apr 10 17:41:35 msg slapd[5305]: => entry_encode(0x0000002a):
uid=prueba22,ou=Informatica,ou=01Capital,dc=juscorrientes,dc=net
Apr 10 17:41:35 msg slapd[5305]: => index_entry_add( 42,
"uid=prueba22,ou=Informatica,ou=01Capital,dc=juscorrientes,dc=net" )
Apr 10 17:41:35 msg slapd[5305]: => key_change(ADD,2a)
Apr 10 17:41:35 msg slapd[5305]: <= key_change 0
Apr 10 17:41:35 msg slapd[5305]: => key_change(ADD,2a)
Apr 10 17:41:35 msg slapd[5305]: <= key_change 0
Apr 10 17:41:35 msg slapd[5305]: => key_change(ADD,2a)
Apr 10 17:41:35 msg slapd[5305]: <= key_change 0
Apr 10 17:41:35 msg slapd[5305]: => key_change(ADD,2a)
Apr 10 17:41:35 msg slapd[5305]: <= key_change 0
Apr 10 17:41:35 msg slapd[5305]: => key_change(ADD,2a)
Apr 10 17:41:35 msg slapd[5305]: <= key_change 0
Apr 10 17:41:35 msg slapd[5305]: => key_change(ADD,2a)
Apr 10 17:41:35 msg slapd[5305]: <= key_change 0
Apr 10 17:41:35 msg slapd[5305]: <= index_entry_add( 42,
"uid=prueba22,ou=Informatica,ou=01Capital,dc=juscorrientes,dc=net" ) success
Apr 10 17:41:35 msg slapd[5305]:
bdb_dn2entry("cn=ldapsync,dc=juscorrientes,dc=net")
Apr 10 17:41:35 msg slapd[5305]: => bdb_dn2id(
"cn=ldapsync,dc=juscorrientes,dc=net" )
Apr 10 17:41:35 msg slapd[5305]: <= bdb_dn2id: got id=0x00000004
Apr 10 17:41:35 msg slapd[5305]: entry_decode:
"cn=ldapsync,dc=juscorrientes,dc=net"
Apr 10 17:41:35 msg slapd[5305]: <=
entry_decode(cn=ldapsync,dc=juscorrientes,dc=net)
Apr 10 17:41:35 msg slapd[5305]: bdb_add: added id=0000002a
dn="uid=prueba22,ou=Informatica,ou=01Capital,dc=juscorrientes,dc=net"
Apr 10 17:41:35 msg slapd[5305]: send_ldap_result: conn=0 op=3 p=3
Apr 10 17:41:35 msg slapd[5305]: send_ldap_response: msgid=4 tag=105 err=0
password change (slave log):
Apr 10 17:38:59 msg slapd[5305]: connection_get(15): got connid=0
Apr 10 17:38:59 msg slapd[5305]: connection_read(15): checking for input on
id=0
Apr 10 17:38:59 msg slapd[5305]: ber_get_next on fd 15 failed errno=11
(Resource temporarily unavailable)
Apr 10 17:38:59 msg slapd[5305]: do_modify
Apr 10 17:38:59 msg slapd[5305]: => get_ctrls
Apr 10 17:38:59 msg slapd[5305]: => get_ctrls: oid="2.16.840.1.113730.3.4.2"
(noncritical)
Apr 10 17:38:59 msg slapd[5305]: <= get_ctrls: n=1 rc=0 err=""
Apr 10 17:38:59 msg slapd[5305]: >>> dnPrettyNormal:
<uid=prueba,ou=Informatica,ou=01Capital,dc=juscorrientes,dc=net>
Apr 10 17:38:59 msg slapd[5305]: <<< dnPrettyNormal:
<uid=prueba,ou=Informatica,ou=01Capital,dc=juscorrientes,dc=net>,
<uid=prueba,ou=informatica,ou=01capital,dc=juscorrientes,dc=net>
Apr 10 17:38:59 msg slapd[5305]: >>> dnPretty:
<cn=admin,dc=juscorrientes,dc=net>
Apr 10 17:38:59 msg slapd[5305]: <<< dnPretty:
<cn=admin,dc=juscorrientes,dc=net>
Apr 10 17:38:59 msg slapd[5305]: >>> dnNormalize:
<cn=admin,dc=juscorrientes,dc=net>
Apr 10 17:38:59 msg slapd[5305]: <<< dnNormalize:
<cn=admin,dc=juscorrientes,dc=net>
Apr 10 17:38:59 msg slapd[5305]:
bdb_dn2entry("uid=prueba,ou=informatica,ou=01capital,dc=juscorrientes,dc=net")
Apr 10 17:38:59 msg slapd[5305]: bdb_modify_internal: 0x00000021:
uid=prueba,ou=Informatica,ou=01Capital,dc=juscorrientes,dc=net
Apr 10 17:38:59 msg slapd[5305]: => string_expand: pattern:
cn=admin,dc=juscorrientes,dc=net
Apr 10 17:38:59 msg slapd[5305]: => string_expand: expanded:
cn=admin,dc=juscorrientes,dc=net
Apr 10 17:38:59 msg slapd[5305]: => regex_matches: string:^I
cn=duplicador,dc=juscorrientes,dc=net
Apr 10 17:38:59 msg slapd[5305]: => regex_matches: rc: 1 no matches
Apr 10 17:38:59 msg slapd[5305]: bdb_modify: modify failed (50)
Apr 10 17:38:59 msg slapd[5305]: send_ldap_result: conn=0 op=2 p=3
Apr 10 17:38:59 msg slapd[5305]: send_ldap_response: msgid=3 tag=103 err=50
master.conf
#######################################################################
#allow bind_v2
include /etc/ldap/schema/core.schema
include /etc/ldap/schema/cosine.schema
include /etc/ldap/schema/nis.schema
include /etc/ldap/schema/inetorgperson.schema
include /etc/ldap/schema/samba.schema
schemacheck on
pidfile /var/run/slapd/slapd.pid
argsfile /var/run/slapd.args
loglevel 0
modulepath /usr/lib/ldap
moduleload back_bdb
#######################################################################
backend bdb
checkpoint 512 30
#######################################################################
database bdb
suffix "dc=juscorrientes,dc=net"
directory "/var/lib/ldap"
replica uri=ldap://10.100.100.213:389
binddn="cn=duplicador,dc=juscorrientes,dc=net" bindmethod=simple
credentials=testeo
index objectClass eq
lastmod on
replogfile /var/lib/ldap/replog/replication.log
access to attrs=userPassword
by dn.regex="cn=admin,dc=juscorrientes,dc=net" write
by dn="cn=readadmin,dc=juscorrientes,dc=net" read
by anonymous auth
by self write
by * none
access to dn.base="" by * read
access to *
by dn.regex="cn=admin,dc=juscorrientes,dc=net" write
by dn="cn=readadmin,dc=juscorrientes,dc=net" read
by self read
by users read
by anonymous auth
slave.conf same as the master except:
# replogfile /var/lib/ldap/replog
access to *
by dn.regex="cn=admin,dc=juscorrientes,dc=net" write
by dn="cn=readadmin,dc=juscorrientes,dc=net" read
by dn.regex="cn=duplicador,dc=juscorrientes,dc=net" write
by self read
by users read
by anonymous auth
updatedn "cn=duplicador,dc=juscorrientes,dc=net"
updateref ldap://10.100.200.211