[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: slurpd -d9 --- Invalid credentials

To: Steven Wong <slqwong@yahoo.com>
Subject: Re: slurpd -d9 --- Invalid credentials
From: Buchan Milne <bgmilne@staff.telkomsa.net>
Date: Sat, 15 Jul 2006 17:01:03 +0200
Cc: openLDAP software <openldap-software@OpenLDAP.org>
In-reply-to: <20060715072710.28963.qmail@web82710.mail.mud.yahoo.com>
Organization: Telkom Internet
References: <20060715072710.28963.qmail@web82710.mail.mud.yahoo.com>
User-agent: KMail/1.9.1

On Saturday 15 July 2006 09:27, Steven Wong wrote:

> replica host=<server2>:389
>         suffix="dc=pro-unlimited,dc=com"
>        
> binddn="uid=replicator,ou=ldapbods,ou=people,dc=pro-unlimited,dc=com"
> credentials={MD5}$1$ghofW1$RazQvsgWa/7dtiphrRRPe0
>         bindmethod=simple
>         tls=yes
>  replica host=<server3>:389
>          suffix="dc=pro-unlimited,dc=com"
>         
> binddn="uid=replicator,ou=ldapbods,ou=people,dc=pro-unlimited,dc=com"
> credentials={MD5}$1$ghofW1$RazQvsgWa/7dtiphrRRPe0
>          bindmethod=simple
>          tls=yes

If you are using simple, the credentials *must* be the cleartext password.

Please test that you can authenticate to the slave as replicator before you do 
anything else, eg:

ldapwhoami -x -D 
uid=replicator,ou=ldapbods,ou=people,dc=pro-unlimited,dc=com -w <text after 
credentials=> -h <server2>

etc. to test. Use only details in the file (copy/paste), not what you think 
the password is.

BTW, you really want to upgrade *all* your LDAP servers to 2.3.x, ideally 
2.3.24, and switch to sync-reply.

Regards,
Buchan

-- 
Buchan Milne
ISP Systems Specialist
B.Eng,RHCE(803004789010797),LPIC-2(LPI000074592)

Attachment: pgp7v8Nclspm0.pgp
Description: PGP signature

References:
- slurpd -d9 --- Invalid credentials
  - From: Steven Wong <slqwong@yahoo.com>

Prev by Date: Re: slurpd -d9 --- Invalid credentials
Next by Date: Re: slurpd -d9 --- Invalid credentials
Index(es):
- Chronological
- Thread