[Date Prev][Date Next] [Chronological] [Thread] [Top]

Syncrepl SSL fail

To: openldap-technical@openldap.org
Subject: Syncrepl SSL fail
From: Hugo Deprez <hugo.deprez@gmail.com>
Date: Thu, 13 Oct 2011 18:38:51 +0200
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:date:message-id:subject:from:to:content-type; bh=EoVC49h8Nw77gE+c8N5TfRYKjHBAwzWPomrYlsUc7gw=; b=IGXoHETOiG+ZkdHLSBMeaD6EL8Mblm+9++lKgERY3RnD9ABdPvMCV9ROa4ZTT5sYf+ 4SnYG9zvMaii6auR4jXw8FOXdLwNuZz95hgBnmxV99CCLiSH/9suNzstCDUSC24fPVmr jUoYcqWJMh8XXoAJsqRO72j3UtWbfjbBHcgog=

Dear community,

I setup a syncrepl between my master openldap server and a consumer.

I am trying to use SSL for this syncrepl
I got the following error in the log  when I start slapd on the consumer :

Oct 13 17:04:59 server slapd[16905]: slapd starting
Oct 13 17:04:59 server slapd[16905]: slap_client_connect:
URI=ldaps://ldap.mydomain.fr:1024/
DN="cn=syncrepluser,o=others,dc=mydomain,dc=fr" ldap_sasl_bind_s
failed (-1)
Oct 13 17:04:59 server slapd[16905]: do_syncrepl: rid=003 rc -1
retrying (9 retries left)


I don't understand why it is failing as a single ldapsearch from the
same server with the syncrepl user is working.

here is my syncrepl configuration :

Syncrepl  rid=003
               provider=ldaps://ldap.mydomain.fr:1024/
               type=refreshOnly
               retry="60 10 600 +"
               interval=00:00:00:10
               searchbase="dc=mydomain,dc=fr"
               scope=sub
               schemachecking=on
               bindmethod=simple
               binddn="cn=syncrepluser,o=others,dc=mydomain,dc=fr"
               credentials=my_password


Any idea ?

Regards,

Hugo

Follow-Ups:
- RE: Syncrepl SSL fail
  - From: Chris Jacobs <Chris.Jacobs@apollogrp.edu>
- Re: Syncrepl SSL fail
  - From: Quanah Gibson-Mount <quanah@zimbra.com>

Prev by Date: Re: Patching openldap?
Next by Date: RE: Syncrepl SSL fail
Index(es):
- Chronological
- Thread