Am Mon, 16 Jan 2012 11:03:25 +0100
schrieb "Angel L. Mateo"<amateo@um.es>:
Hi,
I'm trying to configure chain overlay in a ldap replica
consumer. My final purpose is that if this node receives an update,
it directly tries to make it in the provider node, instead of
returning the referrral. Is that possible? I think so...
But I have a problem with the configuration. My config is
...
moduleload back_ldap
moduleload syncprov
...
database hdb
suffix dc=<mysuffix>
...
overlay syncprov
syncrepl rid=31
provider="ldap://<provider>"
binddn="<replica user dn>"
bindmethod=simple
credentials=<password>
searchbase="dc=<mysuffix>"
type=refreshAndPersist
interval=00:00:00:10
retry="5 5 300 +"
timeout=1
overlay chain
chain-max-depth 1
chain-return-error true
chain-uri ldap://<provider>
chain-rebind-as-user yes
chain-idassert-bind bindmethod=simple
binddn=<replica user dn>
credentials=<password>
starttls=no
mode="self"
But when I test configuration with slaptest, I get:
root@canis32:/etc/ldap# slaptest -f /etc/ldap/slapd.conf
syncprov_db_open: invalid config, lastmod must be enabled
backend_startup_one (type=hdb, suffix="<mysuffix>"): bi_db_open
failed! (-1) slap_startup failed (test would succeed using the -u
switch)
and I can't run slapd. Any idea?
I'm running slapd 2.4.21 (ubuntu lucid package)
The chain overlay has to be configured in the global part, prior to any
database declaration.