Found it! It was all my own fault... the binddn is wrong. I can't tell you how long I've been looking at that.. and how much of a pillock I now feel. But to hopefully help someone learn from my mistakes... The binddn given in the documentation on openldap.org shows binddn="cn=config" this wasn't working for me though, (not sure if this is something I changed earlier in config, or if it's something changed in they way slapd works, but changing that to 'binddn="cn=admin,cn=config" ' fixed the problem for me... they are now syncing, and I'm cursing the fact that it's only 11am, and I can't go for a beer. Thanks to all on the list, and especially Dieter. Alister On 06 Sep 2010, at 09:14, Dieter Kluenter wrote: > Alister Forbes <a@cisco.com> writes: > >> <SNIP> >> olcSyncRepl: rid=001 provider=ldap://10.211.55.8 binddn="cn=config" bindmethod=simple >> credentials=$PASS searchbase="cn=config" type=refreshAndPersist >> retry="5 5 300 5" timeout=1 >> olcSyncRepl: rid=002 provider=ldap://10.211.55.11 binddn="cn=config" bindmethod=simple >> credentials=$PASS searchbase="cn=config" type=refreshAndPersist >> retry="5 5 300 5" timeout=1 > <SNIP> -- Alister Forbes Work: +32 2 704 5762 Internal: 322 5762 a@cisco.com TACSUNS _.|._.|._ Cisco Systems Please avoid sending me Word or PowerPoint attachments. See - http://www.gnu.org/philosophy/no-word-attachments.html
Attachment:
PGP.sig
Description: This is a digitally signed message part