[Date Prev][Date Next] [Chronological] [Thread] [Top]

problem with replication [syncrepl] hash of passwords



Hello. 


Openldap 2.4.18, master-slave replication . 
Slave server successfully replicates all data, except hashed {sha} passwords. 
It is not problem with "access to attrs=userPassword " - I test ithis. 

How I can solve it and sync passwords ? 

[ slapd.conf ] 

master server: 

# 
index objectClass eq 
# 
overlay syncprov 
syncprov-checkpoint 100 10 
syncprov-sessionlog 100 
# 

slave server: 

syncrepl rid= <> 
provider=ldap://server:389 
type=refreshOnly 
interval=00:00:05:00 
searchbase="dc=company,dc=com" 
filter="(objectClass=*)" 
scope=sub 
attrs="*" 
# 
schemachecking=off 
bindmethod=simple 
binddn="cn=adminuser,dc=company,dc=com" 
credentials=company-pass 
### 



------------------------------------------------ 
policy for passwords: 

objectClass: top 
objectClass: device 
objectClass: pwdPolicy 
pwdAttribute: userPassword 
pwdFailureCountInterval: 600 
pwdGraceAuthNLimit: 1 
pwdMaxFailure: 5 
pwdInHistory: 6 






-- 
---______________________________________________--- 
with deference, Evgeniy