[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Some openldap 2.4 questions
- To: openldap-technical@openldap.org
- Subject: Some openldap 2.4 questions
- From: Radosław Antoniuk <radek.antoniuk@gmail.com>
- Date: Wed, 13 Jan 2010 23:28:36 +0100
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:from:date:message-id :subject:to:content-type; bh=L28Q2fboMblXpSuHDKfMpLMA4a7urlbxZ4Cwehb0ulU=; b=OIbJndWwgVncviyysc4CNi6p6FB+BUaVZfIpJkRfFi6SdrWB4JSUU4BlotiFAEzKea lUphw6z+MMT5TNZ6Xjs3RMtIqtXJlkrVN1YCdJoYBOBmI8wgNhlhF822QnDTwWbzNDBt 6HpclNe4kyXSUKEU+vogTCkzV2ZAdRN3Q2ohs=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:from:date:message-id:subject:to:content-type; b=tqpY7K69CyxGeFOn3OQTLwtS4cvfjINSPcuYaUo499mrssZUYDIk15B4ZFI2buvzji Ybg5bpORwzweM1eonxRrUxNLzUbFtWv/1tsUnKs4cd0xVqZRyBJ8JRv3aD7T5V+jYr6h IW65ajOeo5rfbZ/BgbmdGBaowqoiWjIpp60o4=
Hi,
Three quick issues about slapd 2.4.
1. I'm setting up a syncrepl replication. In the process of testing, I had added three syncprov overlays instead of one, and I ended up with:
dn: olcOverlay={0}syncprov,olcDatabase={0}config,cn=config
objectClass: olcOverlayConfig
objectClass: olcSyncProvConfig
olcOverlay: {0}syncprov
structuralObjectClass: olcSyncProvConfig
entryUUID: 600b89e6-9317-102e-9872-8714c398f98b
creatorsName: cn=admin,cn=config
createTimestamp: 20100111160900Z
entryCSN: 20100111160900.858973Z#000000#000#000000
modifiersName: cn=admin,cn=config
modifyTimestamp: 20100111160900Z
dn: olcOverlay={1}syncprov,olcDatabase={0}config,cn=config
objectClass: olcOverlayConfig
objectClass: olcSyncProvConfig
olcOverlay: {1}syncprov
olcSpCheckpoint: 20 10
structuralObjectClass: olcSyncProvConfig
entryUUID: 600ba142-9317-102e-9873-8714c398f98b
creatorsName: cn=admin,cn=config
createTimestamp: 20100111160900Z
entryCSN: 20100111160900.859584Z#000000#000#000000
modifiersName: cn=admin,cn=config
modifyTimestamp: 20100111160900Z
dn: olcOverlay={2}syncprov,olcDatabase={0}config,cn=config
objectClass: olcOverlayConfig
objectClass: olcSyncProvConfig
olcOverlay: {2}syncprov
olcSpSessionlog: 500
structuralObjectClass: olcSyncProvConfig
entryUUID: 600badea-9317-102e-9874-8714c398f98b
creatorsName: cn=admin,cn=config
createTimestamp: 20100111160900Z
entryCSN: 20100111160900.859909Z#000000#000#000000
modifiersName: cn=admin,cn=config
modifyTimestamp: 20100111160900Z
The thing is, that I cannot delete any of them because cn=config does not support delete operation.
Is this ok to leave it as is? or any workaround to get rid of the unwanted ones?
2. About N-Way replication... What's the best authentication to use? Because RootDN is the admin, and in simple authentication I would store cleartext password in the syncrepl configuration, I'm assuming that the best here would be to use some SASL mech?
3. Assuming a running normal replication(master-slave) with refreshAndPersist, is there any method of checking of the status of the replication? like show slave status in MySQL. I have tested it with cutting the transmission by iptables, and ok, it caught up after reconnection, but the master did not complain at all when the connection was not there...
--
Best regards,
Radosław Antoniuk