[Date Prev][Date Next] [Chronological] [Thread] [Top]

syncrepl proxy problem - consumer gets cleared

To: openldap-technical@openldap.org
Subject: syncrepl proxy problem - consumer gets cleared
From: Sebastian Hofmann <sebastian.hofmann@sourcepark.de>
Date: Tue, 02 Nov 2010 15:32:34 +0100
User-agent: Mozilla-Thunderbird 2.0.0.24 (X11/20100329)

Hello,

I have a problem setting up replication with syncrepl proxy (push-based)
according to
http://www.openldap.org/doc/admin24/replication.html#Syncrepl%20Proxy.

I got it working but sometimes the client gets cleared. This happens
when consumer is down and some changed occur at the provider. When
restarting the consumer, the changes will be replicated and after that
the consumer gets cleared from searchbase down.

Here is the log of the consumer. I removed
dc=max,dc=pamuser,dc=sourcepark,dc=de at the provider while the consumer
was down:

conn=0 op=311 SRCH base="dc=pamuser,dc=sourcepark,dc=de" scope=2 deref=0
filter="(objectClass=*)"
conn=0 op=311 SRCH attr=entryUUID
conn=0 op=311 SEARCH RESULT tag=101 err=0 nentries=153 text=
conn=0 op=312 DEL dn="dc=max,dc=pamuser,dc=sourcepark,dc=de"
conn=0 op=312 RESULT tag=107 err=0 text=
conn=0 op=313 DEL dn="dc=pamuser,dc=sourcepark,dc=de"
conn=0 op=313 RESULT tag=107 err=66 text=subordinate objects must be
deleted first

#########################

My provider config:

allow bind_v2
allow bind_anon_dn
include         /home/sebastian/ldap-master/schema/core.schema
include         /home/sebastian/ldap-master/schema/cosine.schema
include         /home/sebastian/ldap-master/schema/nis.schema
include         /home/sebastian/ldap-master/schema/inetorgperson.schema
include 	/home/sebastian/ldap-master/schema/evolutionperson.schema
include		/home/sebastian/ldap-master/schema/automount.schema
include         /home/sebastian/ldap-master/schema/openldap.schema
include         /home/sebastian/ldap-master/schema/misc.schema
include 	/home/sebastian/ldap-master/schema/gum.schema
include 	/home/sebastian/ldap-master/schema/samba.schema
include 	/home/sebastian/ldap-master/schema/sudo.schema
pidfile         /home/sebastian/ldap-master/run/slapd.pid
modulepath	/usr/lib/ldap
moduleload	back_bdb
moduleload  syncprov.la
moduleload  back_monitor.la
moduleload  back_ldap.la
backend		bdb
database        bdb
suffix          "dc=sourcepark,dc=de"
checkpoint 512 30
directory       "/home/sebastian/ldap-master/data"
index           objectClass eq
lastmod         on
rootdn          "cn=test,dc=sourcepark,dc=de"
rootpw          test
access to attrs=userPassword
        by dn="cn=test,dc=sourcepark,dc=de" write
        by anonymous auth
        by self write
        by * none
access to dn.base="" by * read
access to dn.subtree="ou=Contacts,dc=sourcepark,dc=de"
        by users write
        by self write
        by * auth
access to *
        by dn="cn=test,dc=sourcepark,dc=de" write
        by * read
overlay syncprov
syncprov-checkpoint 1000 60
database    monitor
database    config
rootpw          testing
database        ldap
hidden              on
suffix          "dc=sourcepark,dc=de"
rootdn          "cn=slapd-ldap"
uri             ldap://localhost:9010/
lastmod         on
restrict        all
acl-bind        bindmethod=simple
                binddn="cn=replicator,dc=sourcepark,dc=de"
                credentials=test
syncrepl        rid=001
                provider=ldap://localhost:9009/
                binddn="cn=replicator,dc=sourcepark,dc=de"
                bindmethod=simple
                credentials=test
                searchbase="dc=pamuser,dc=sourcepark,dc=de"
		scope=sub
	        type=refreshAndPersist
                retry="5 5 300 5"
overlay         syncprov

####################

My consumer conf:

moduleload syncprov
allow bind_v2
allow bind_anon_dn
include         /home/sebastian/ldap-slave/schema/core.schema
include         /home/sebastian/ldap-slave/schema/cosine.schema
include         /home/sebastian/ldap-slave/schema/nis.schema
include         /home/sebastian/ldap-slave/schema/inetorgperson.schema
include 	/home/sebastian/ldap-slave/schema/evolutionperson.schema
include		/home/sebastian/ldap-slave/schema/automount.schema
include         /home/sebastian/ldap-slave/schema/openldap.schema
include         /home/sebastian/ldap-slave/schema/misc.schema
include 	/home/sebastian/ldap-slave/schema/gum.schema
include 	/home/sebastian/ldap-slave/schema/samba.schema
include 	/home/sebastian/ldap-slave/schema/sudo.schema
pidfile         /home/sebastian/ldap-slave/run/slapd.pid
loglevel        16384
modulepath	/usr/lib/ldap
moduleload	back_bdb
backend		bdb
database        bdb
suffix          "dc=sourcepark,dc=de"
checkpoint 512 30
directory       "/home/sebastian/ldap-slave/data"
index           objectClass eq
lastmod         on
rootdn          "cn=test,dc=sourcepark,dc=de"
rootpw          test
access to attrs=userPassword
        by dn="cn=test,dc=sourcepark,dc=de" write
        by anonymous auth
        by self write
        by * none
access to *
	by dn="cn=replicator,dc=sourcepark,dc=de" write
	by dn="cn=test,dc=suretecsystems,dc=com" write
        by * break
access to dn.base=""
	by * read
access to dn.base="cn=Subschema"
	by * read
access to *
	by self write
        by * read
limits dn.exact="cn=replicator,dc=sourcepark,dc=de" time.soft=unlimited
time.hard=unlimited size.soft=unlimited size.hard=unlimited
updatedn "cn=replicator,dc=sourcepark,dc=de"
updateref   ldap://localhost:9009

######################


Any help would be greatly appreciated.
Thanks

Sebastian

Follow-Ups:
- Re: syncrepl proxy problem - consumer gets cleared
  - From: Quanah Gibson-Mount <quanah@zimbra.com>

Prev by Date: Re: OpenLDAP works slower on a server with LDAP-based authentication
Next by Date: system schema changes
Index(es):
- Chronological
- Thread