[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Some openldap 2.4 questions
- To: openldap-technical@openldap.org
- Subject: Some openldap 2.4 questions
- From: Radosław Antoniuk <radek.antoniuk@gmail.com>
- Date: Thu, 14 Jan 2010 23:09:51 +0100
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :from:date:message-id:subject:to:content-type; bh=qn/kD5mrYECDFqydvl3wXRj6gpXb2Zhx9IlOHqmUXWQ=; b=LiMze9iEGU/VPIHxuosuhAz+AMedhA7tpOVKPVqPyAoimYeb4gAFSLAJeOlSyF1+0D tw7mysBFxUo1Bc2r0bcfDSZqAFDhneccyE00AlCujR4FMDAxe4qrmc2X1lRsReU5XOiV PFUuFMJho/5eg7OFpKoD5vHpnBomciemZaKhc=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :content-type; b=VDvBhafmUBk6q6Dzkw/fyXinfZ2vulUKHbzT0BCmxAjTN9Cmt9K9SHWp15d39tXXgR 4cWJkfgPEPRDav+1ic8vZO+lcRTFDywWwVDhacaKR5LNytmbDG0h7r5nVW2SF8Uun5uS ica27ijusvhmbgwoK97QcXWk06bR1Nb06fpLU=
- In-reply-to: <49dc90fd1001131428j46537a7bke855fe16d94f3d6a@mail.gmail.com>
- References: <49dc90fd1001131428j46537a7bke855fe16d94f3d6a@mail.gmail.com>
Hi,
Three quick issues about slapd 2.4.
1. I'm setting up a syncrepl replication. In the process of testing, I had added three syncprov overlays instead of one, and I ended up with:
dn: olcOverlay={0}syncprov,olcDatabase={0}config,cn=config
objectClass: olcOverlayConfig
objectClass: olcSyncProvConfig
olcOverlay: {0}syncprov
structuralObjectClass: olcSyncProvConfig
entryUUID: 600b89e6-9317-102e-9872-8714c398f98b
creatorsName: cn=admin,cn=config
createTimestamp: 20100111160900Z
entryCSN: 20100111160900.858973Z#000000#000#000000
modifiersName: cn=admin,cn=config
modifyTimestamp: 20100111160900Z
dn: olcOverlay={1}syncprov,olcDatabase={0}config,cn=config
objectClass: olcOverlayConfig
objectClass: olcSyncProvConfig
olcOverlay: {1}syncprov
olcSpCheckpoint: 20 10
structuralObjectClass: olcSyncProvConfig
entryUUID: 600ba142-9317-102e-9873-8714c398f98b
creatorsName: cn=admin,cn=config
createTimestamp: 20100111160900Z
entryCSN: 20100111160900.859584Z#000000#000#000000
modifiersName: cn=admin,cn=config
modifyTimestamp: 20100111160900Z
dn: olcOverlay={2}syncprov,olcDatabase={0}config,cn=config
objectClass: olcOverlayConfig
objectClass: olcSyncProvConfig
olcOverlay: {2}syncprov
olcSpSessionlog: 500
structuralObjectClass: olcSyncProvConfig
entryUUID: 600badea-9317-102e-9874-8714c398f98b
creatorsName: cn=admin,cn=config
createTimestamp: 20100111160900Z
entryCSN: 20100111160900.859909Z#000000#000#000000
modifiersName: cn=admin,cn=config
modifyTimestamp: 20100111160900Z
The thing is, that I cannot delete any of them because cn=config does not support delete operation.
Is this ok to leave it as is? or any workaround to get rid of the unwanted ones?
2. About N-Way replication... What's the best authentication to use? Because RootDN is the admin, and in simple authentication I would store cleartext password in the syncrepl configuration, I'm assuming that the best here would be to use some SASL mech?
3. Assuming a running normal replication(master-slave) with refreshAndPersist, is there any method of checking of the status of the replication? like show slave status in MySQL. I have tested it with cutting the transmission by iptables, and ok, it caught up after reconnection, but the master did not complain at all when the connection was not there...
--
Best regards,
Radosław Antoniuk