[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: top-level data entries not replicating, 2.4.15

To: Brian Neu <proclivity76@yahoo.com>
Subject: Re: top-level data entries not replicating, 2.4.15
From: Jonathan Clarke <jonathan@phillipoux.net>
Date: Mon, 24 Aug 2009 14:16:42 +0200
Cc: openldap-technical@openldap.org
In-reply-to: <801443.94032.qm@web51911.mail.re2.yahoo.com>
References: <801443.94032.qm@web51911.mail.re2.yahoo.com>
User-agent: Mozilla/5.0 (X11; U; Linux i686 (x86_64); en-US; rv:1.9.1.3pre) Gecko/20090819 Shredder/3.0b4pre

On 20/08/2009 14:39, Brian Neu wrote:

Forgive me if pasting here is bad etiquette.


<consumer slapd.conf>

include         /etc/openldap/schema/corba.schema
include         /etc/openldap/schema/core.schema
include         /etc/openldap/schema/cosine.schema
include         /etc/openldap/schema/duaconf.schema
include         /etc/openldap/schema/dyngroup.schema
include         /etc/openldap/schema/inetorgperson.schema
include         /etc/openldap/schema/java.schema
include         /etc/openldap/schema/misc.schema
include         /etc/openldap/schema/nis.schema
include         /etc/openldap/schema/openldap.schema
include         /etc/openldap/schema/ppolicy.schema
include         /etc/openldap/schema/collective.schema
include         /etc/openldap/schema/samba.schema

allow bind_v2

pidfile         /var/run/openldap/slapd.pid
argsfile        /var/run/openldap/slapd.args

TLSCACertificateFile /etc/openldap/cacerts/cavictory2.crt
TLSCertificateFile /etc/openldap/keys/victory3cert.pem
TLSCertificateKeyFile /etc/openldap/keys/victory3key.pem

database        hdb
suffix          "dc=srg,dc=com"
checkpoint      1024 15
rootdn          "cn=Manager,dc=srg,dc=com"

rootpw          {MD5}blah

directory       /var/lib/ldap

index objectClass                       eq,pres
index ou,cn,mail,surname,givenname      eq,pres,sub
index uidNumber,gidNumber,loginShell    eq,pres
index uid,memberUid                     eq,pres,sub
index nisMapName,nisMapEntry            eq,pres,sub

syncrepl  rid=0
         provider=ldap://victory2.srg.com:389
         bindmethod=simple
         starttls=critical
         binddn="cn=replicator,dc=srg,dc=com"
         credentials=blah
         searchbase="dc=srg,dc=com"
         logbase="cn=accesslog"
         schemachecking=on
         type=refreshAndPersist
         retry="60 +"
         syncdata=accesslog

I don't see anything wrong with this - although I'm not very familiarwith accesslog configuration.

Does the "cn=replicator,dc=srg,dc=com" have full access on the providerto read necessary data?

updateref               ldaps://victory2.srg.com

database monitor

access to *
         by dn.exact="cn=Manager,dc=srg,dc=com" write
         by * none

</consumer slapd.conf>


--- On Thu, 8/20/09, Jonathan Clarke<jonathan@phillipoux.net>  wrote:

From: Jonathan Clarke<jonathan@phillipoux.net>
Subject: Re: top-level data entries not replicating, 2.4.15
To: "Brian Neu"<proclivity76@yahoo.com>
Cc: openldap-technical@openldap.org
Date: Thursday, August 20, 2009, 8:02 AM
On 19/08/2009 19:29, Brian Neu
wrote:

Even with no logfilter on the consumer,

cn=replicator,dc=domain,dc=com&

sambaDomainName=SRG,dc=domain,dc=com


don't replicate, even after wiping the database and

restarting.  Everything else seems to replicate fine.


How do I get top-level data entries to replicate?


This really depends on your syncrepl configuration on the
consumer.
If you provide it here, maybe we can take a look.

Aside from that, the latest version, 2.4.17, contains a few
fixes that
might help with this problem.

Jonathan

Follow-Ups:
- Re: top-level data entries not replicating, 2.4.15
  - From: Jonathan Clarke <jonathan@phillipoux.net>

References:
- Re: top-level data entries not replicating, 2.4.15
  - From: Brian Neu <proclivity76@yahoo.com>

Prev by Date: Re: Not able to authenticate Apache against OpenLDAP
Next by Date: Re: master-slave replication woes
Index(es):
- Chronological
- Thread