[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: problem with syncrepl

To: openldap-software@openldap.org, thomas.cataldo@aliasource.fr
Subject: Re: problem with syncrepl
From: Buchan Milne <bgmilne@staff.telkomsa.net>
Date: Wed, 18 Oct 2006 16:27:34 +0200
In-reply-to: <f19173c90610180236n4c6fb32bsb68fc2a3bad8534@mail.gmail.com>
Organization: Telkom Internet
References: <f19173c90610180236n4c6fb32bsb68fc2a3bad8534@mail.gmail.com>
User-agent: KMail/1.9.4

On Wednesday 18 October 2006 11:36, Thomas Cataldo wrote:
> Hi,
>
> I'm having trouble setting up syncrepl beetween 2 openldap 2.3.27 servers.
>
> When I run the consumer with "full debug" I see that the data I want
> to replicate is transfered correctly, but the consumer "fails to store
> it". The sync ends with :
>
> do_syncrep2: got search entry without control
>
> Sync phase in the consumer logs :
>
> =>do_syncrepl
>
> =>do_syncrep2
>
> ldap_result ld 0x819f6d0 msgid -1
>
> ldap_chkResponseList ld 0x819f6d0 msgid -1 all 0
>
> ldap_chkResponseList returns ld 0x819f6d0 NULL
>
> wait4msg ld 0x819f6d0 msgid -1 (timeout 0 usec)
>
> wait4msg continue ld 0x819f6d0 msgid -1 all 0
>
> ** ld 0x819f6d0 Connections:
>
> * host: 172.24.239.122  port: 389  (default)
>
>   refcnt: 2  status: Connected
>
>   last used: Wed Oct 18 11:33:40 2006
>
>
>
> ** ld 0x819f6d0 Outstanding Requests:
>
>  * msgid 2,  origid 2, status InProgress
>
>    outstanding referrals 0, parent count 0
>
> ** ld 0x819f6d0 Response Queue:
>
>    Empty
>
> ldap_chkResponseList ld 0x819f6d0 msgid -1 all 0
>
> ldap_chkResponseList returns ld 0x819f6d0 NULL
>
> ldap_int_select
>
> read1msg: ld 0x819f6d0 msgid -1 all 0
>
> ber_get_next
>
> ber_get_next: tag 0x30 len 692 contents:
>
> read1msg: ld 0x819f6d0 msgid 2 message type search-entry
>
> ber_scanf fmt ({xx) ber:
>
> do_syncrep2: got search entry without control
>
> My slapd.conf on consumer looks like :
>
>
> backend		bdb
> checkpoint 512 30
>
>
> database        bdb
> suffix          "dc=actia,dc=com"
> directory       "/var/lib/ldap"
> index           objectClass,entryCSN,entryUUID eq
> lastmod         on
> replogfile	/var/lib/ldap/replog
>
> # seems mandatory for syncrepl
> rootdn cn=admin,dc=actia,dc=com
>
> access to attrs=userPassword
>         by anonymous auth
>         by self write
>         by * none
>
> access to dn.base="" by * read
>
> access to * by * read
>
> syncrepl rid=112
> 	provider=ldap://172.24.239.122:389
> 	type=refreshAndPersist
> 	interval=00:00:00:20
> 	retry="5 +"
> 	searchbase="ou=Filiale2,dc=actia,dc=com"
> 	scope=one
> 	filter="(objectClass=posixAccount)"
> 	binddn="cn=syncuser,dc=actia,dc=com"
> 	bindmethod=simple
> 	credentials=synchro
> 	schemachecking=off
>
> On the provider it looks like :
>
> database        bdb
> suffix          "dc=actia,dc=com"
> directory       "/var/lib/ldap"
> index           objectClass,entryCSN,entryUUID eq
> lastmod         on
>
> access to attrs=userPassword
>         by dn="cn=admin,dc=actia,dc=com" write
>         by dn="cn=syncuser,dc=actia,dc=com" read
>         by anonymous auth
>         by self write
>         by * none
>
> access to dn.base="" by * read
>
> access to *
>         by dn="cn=admin,dc=actia,dc=com" write
>         by * read

Surely you need:

overlay syncprov

before the next lines:

>
> syncprov-checkpoint 100 10
> syncprov-sessionlog 100
>
> I would take any hint on why my data is transfered but not stored.
>

Also, you haven't provided your syncuser with unlimited (size/time) access, 
which you most likely want to do.


Regards,
Buchan
-- 
Buchan Milne
ISP Systems Specialist - Monitoring/Authentication Team Leader
B.Eng,RHCE(803004789010797),LPIC-2(LPI000074592)

Attachment: pgprrkP9S54IR.pgp
Description: PGP signature

References:
- problem with syncrepl
  - From: "Thomas Cataldo" <tcataldo@gmail.com>

Prev by Date: Re: Bind with crypt password
Next by Date: Re: problem with syncrepl
Index(es):
- Chronological
- Thread