[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
syncrepl binds always fail the first time
- To: openldap-technical@openldap.org
- Subject: syncrepl binds always fail the first time
- From: Tyler Gates <tgates81@gmail.com>
- Date: Wed, 30 Mar 2011 11:16:20 -0400
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:date:message-id:subject:from:to :content-type; bh=955c3KCdNy8RtOLMKFO+dvTsar8BX+aS0Vq39zfskDc=; b=pTIz/l63ib7Bp29MB+LS6jvCKFhLixI/00OQW/MzK6/IfIz/mAEUNgWyzZpy1jPUfQ AdUqtQgrVaGqPR1KSrfamdvBHBLU/m00pKqTT25SOR/+5BCwoHbegT3meBYIeT16GFYY DvrWGUL517ZaHwHycHLiAZtKYSYLT/y4W55xw=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:date:message-id:subject:from:to:content-type; b=jONMilLA6ENm2uj73hJxh4NOkbqu0bbsRIe5va7SKuxIdk2CDW0gGT5S2t34zQ/fB0 /UuG4ieSiQc3zq2yRnJGoVaCVJTQEfyRiPbyjuEyybhmU+HGE1+0tIHeQnmvZ3wBkXEF 1qz4u5tE9s3ZS42MqWXnU0sBYMBUK7z1VczVw=
Hello,
Using version 2.4.24 I have a replication server that periodically
queries the provider for updates via refreshOnly. I've noticed that
once slapd is started, the bind to the replicator DN on the provider
always failed but subsequent do_syncrepl retries succeed. Ideally I'd
like the first bind to succeed so it pulls in all the data instead of
having to wait <retry> seconds. Is this normal behavior or do I have
something mis-configured?
slapd.conf:
include /etc/ldap/schema/core.schema
include /etc/ldap/schema/cosine.schema
include /etc/ldap/schema/inetorgperson.schema
include /etc/ldap/schema/nis.schema
include /etc/ldap/schema/openldap.schema
include /etc/ldap/schema/qmail.schema
pidfile /var/run/slapd/slapd.pid
argsfile /var/run/slapd/slapd.args
modulepath /usr/lib/ldap
moduleload back_hdb
loglevel config
allow bind_anon_dn
database hdb
directory /var/lib/ldap
suffix "dc=domain,dc=com"
rootdn "cn=Manager,dc=domain,dc=com"
index objectclass,entryCSN,entryUUID eq
index uid,memberUid,uidNumber,gidNumber eq
cachesize 200
idlcachesize 600
checkpoint 50 5
syncrepl rid=001
provider=ldaps://directory-master.domain.com
type=refreshOnly
interval=00:00:10:00
retry="60 5 600 +"
searchbase="dc=domain,dc=com"
filter="(|(&(objectClass=posixAccount)(uid=username))(&(objectClass=posixGroup)(memberUid=username)))"
scope=sub
attrs="cn,sn,givenName,homeDirectory,loginShell,ou,uid,uidNumber,userPassword,memberUid,gidNumber"
schemachecking=off
bindmethod=simple
binddn="cn=replicator,dc=domain,dc=com"
credentials=secret