[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
syncrepl proxy problem - consumer gets cleared
Hello,
I have a problem setting up replication with syncrepl proxy (push-based)
according to
http://www.openldap.org/doc/admin24/replication.html#Syncrepl%20Proxy.
I got it working but sometimes the client gets cleared. This happens
when consumer is down and some changed occur at the provider. When
restarting the consumer, the changes will be replicated and after that
the consumer gets cleared from searchbase down.
Here is the log of the consumer. I removed
dc=max,dc=pamuser,dc=sourcepark,dc=de at the provider while the consumer
was down:
conn=0 op=311 SRCH base="dc=pamuser,dc=sourcepark,dc=de" scope=2 deref=0
filter="(objectClass=*)"
conn=0 op=311 SRCH attr=entryUUID
conn=0 op=311 SEARCH RESULT tag=101 err=0 nentries=153 text=
conn=0 op=312 DEL dn="dc=max,dc=pamuser,dc=sourcepark,dc=de"
conn=0 op=312 RESULT tag=107 err=0 text=
conn=0 op=313 DEL dn="dc=pamuser,dc=sourcepark,dc=de"
conn=0 op=313 RESULT tag=107 err=66 text=subordinate objects must be
deleted first
#########################
My provider config:
allow bind_v2
allow bind_anon_dn
include /home/sebastian/ldap-master/schema/core.schema
include /home/sebastian/ldap-master/schema/cosine.schema
include /home/sebastian/ldap-master/schema/nis.schema
include /home/sebastian/ldap-master/schema/inetorgperson.schema
include /home/sebastian/ldap-master/schema/evolutionperson.schema
include /home/sebastian/ldap-master/schema/automount.schema
include /home/sebastian/ldap-master/schema/openldap.schema
include /home/sebastian/ldap-master/schema/misc.schema
include /home/sebastian/ldap-master/schema/gum.schema
include /home/sebastian/ldap-master/schema/samba.schema
include /home/sebastian/ldap-master/schema/sudo.schema
pidfile /home/sebastian/ldap-master/run/slapd.pid
modulepath /usr/lib/ldap
moduleload back_bdb
moduleload syncprov.la
moduleload back_monitor.la
moduleload back_ldap.la
backend bdb
database bdb
suffix "dc=sourcepark,dc=de"
checkpoint 512 30
directory "/home/sebastian/ldap-master/data"
index objectClass eq
lastmod on
rootdn "cn=test,dc=sourcepark,dc=de"
rootpw test
access to attrs=userPassword
by dn="cn=test,dc=sourcepark,dc=de" write
by anonymous auth
by self write
by * none
access to dn.base="" by * read
access to dn.subtree="ou=Contacts,dc=sourcepark,dc=de"
by users write
by self write
by * auth
access to *
by dn="cn=test,dc=sourcepark,dc=de" write
by * read
overlay syncprov
syncprov-checkpoint 1000 60
database monitor
database config
rootpw testing
database ldap
hidden on
suffix "dc=sourcepark,dc=de"
rootdn "cn=slapd-ldap"
uri ldap://localhost:9010/
lastmod on
restrict all
acl-bind bindmethod=simple
binddn="cn=replicator,dc=sourcepark,dc=de"
credentials=test
syncrepl rid=001
provider=ldap://localhost:9009/
binddn="cn=replicator,dc=sourcepark,dc=de"
bindmethod=simple
credentials=test
searchbase="dc=pamuser,dc=sourcepark,dc=de"
scope=sub
type=refreshAndPersist
retry="5 5 300 5"
overlay syncprov
####################
My consumer conf:
moduleload syncprov
allow bind_v2
allow bind_anon_dn
include /home/sebastian/ldap-slave/schema/core.schema
include /home/sebastian/ldap-slave/schema/cosine.schema
include /home/sebastian/ldap-slave/schema/nis.schema
include /home/sebastian/ldap-slave/schema/inetorgperson.schema
include /home/sebastian/ldap-slave/schema/evolutionperson.schema
include /home/sebastian/ldap-slave/schema/automount.schema
include /home/sebastian/ldap-slave/schema/openldap.schema
include /home/sebastian/ldap-slave/schema/misc.schema
include /home/sebastian/ldap-slave/schema/gum.schema
include /home/sebastian/ldap-slave/schema/samba.schema
include /home/sebastian/ldap-slave/schema/sudo.schema
pidfile /home/sebastian/ldap-slave/run/slapd.pid
loglevel 16384
modulepath /usr/lib/ldap
moduleload back_bdb
backend bdb
database bdb
suffix "dc=sourcepark,dc=de"
checkpoint 512 30
directory "/home/sebastian/ldap-slave/data"
index objectClass eq
lastmod on
rootdn "cn=test,dc=sourcepark,dc=de"
rootpw test
access to attrs=userPassword
by dn="cn=test,dc=sourcepark,dc=de" write
by anonymous auth
by self write
by * none
access to *
by dn="cn=replicator,dc=sourcepark,dc=de" write
by dn="cn=test,dc=suretecsystems,dc=com" write
by * break
access to dn.base=""
by * read
access to dn.base="cn=Subschema"
by * read
access to *
by self write
by * read
limits dn.exact="cn=replicator,dc=sourcepark,dc=de" time.soft=unlimited
time.hard=unlimited size.soft=unlimited size.hard=unlimited
updatedn "cn=replicator,dc=sourcepark,dc=de"
updateref ldap://localhost:9009
######################
Any help would be greatly appreciated.
Thanks
Sebastian