[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Replicating schema

To: openldap-technical@openldap.org
Subject: Re: Replicating schema
From: Quentin PETEL <quentin.petel@nameshield.net>
Date: Fri, 26 Jul 2013 09:28:14 +0200
In-reply-to: <OFDD8CC5F0.3C25F6AC-ON86257BB3.00669924-86257BB3.00669B12@LocalDomain>
References: <OFDD8CC5F0.3C25F6AC-ON86257BB3.00669924-86257BB3.00669B12@LocalDomain>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130620 Thunderbird/17.0.7

I think you are doing this right except for the olcAccess attribute: there is a "by" unexpected.

olcAccess: to * by dn="uid=admin,dc=example,dc=com" write by
dn="uid=ldapadmin,ou=system,dc=oreillyauto,dc=com" read by * none


and not "by by"...

Regards,
Quentin

Le 25/07/2013 20:41, espeake@oreillyauto.com a écrit :

Okay so I am very new to openLDAP and we are running v 2.4.28 on ubuntu
12.04.  In trying to set up a mirror with two servers  that will grow to 3
soon.  THis is what I get in the log about syncing the schema:

Jul 25 13:26:42 tntest-ldap-1 slapd[27954]: conn=1004 fd=16 ACCEPT from IP=
172.17.3.148:39672 (IP=0.0.0.0:389)
Jul 25 13:26:42 tntest-ldap-1 slapd[27954]: conn=1004 op=0 BIND
dn="uid=admin,dc=example,dc=com" method=128
Jul 25 13:26:42 tntest-ldap-1 slapd[27954]: conn=1004 op=0 BIND
dn="uid=admin,dc=example,dc=com" mech=SIMPLE ssf=0
Jul 25 13:26:42 tntest-ldap-1 slapd[27954]: conn=1004 op=0 RESULT tag=97
err=0 text=
Jul 25 13:26:42 tntest-ldap-1 slapd[27954]: conn=1004 op=1 SRCH
base="cn=config" scope=2 deref=0 filter="(objectClass=*)"
Jul 25 13:26:42 tntest-ldap-1 slapd[27954]: conn=1004 op=1 SRCH attr=* +
Jul 25 13:26:42 tntest-ldap-1 slapd[27954]: findbase failed! 32
Jul 25 13:26:42 tntest-ldap-1 slapd[27954]: conn=1004 op=1 SEARCH RESULT
tag=101 err=32 nentries=0 text=
Jul 25 13:26:42 tntest-ldap-1 slapd[27954]: conn=1004 op=2 UNBIND
Jul 25 13:26:42 tntest-ldap-1 slapd[27954]: conn=1004 fd=16 closed

>From what I can tell it is binding with the simple methad establishes the
search base looking at all of the object classes. but then it says it can't
find the data base.  Here is the ldif file from olcDatabase{0}config.ldif

dn: olcDatabase={0}config
objectClass: olcDatabaseConfig
olcDatabase: {0}config
olcRootDN: cn=admin,cn=config
olcRootPW: secret
structuralObjectClass: olcDatabaseConfig
olcsyncrepl: rid=001 provider=ldap://tntest-ldap-1.example.com
type=refreshAndPersist retry="5 +" searchbase="cn=config" bindmethod=simple
binddn="uid=admin,dc=example,dc=com" credentials=secret
olcsyncrepl: rid=002 provider=ldap://tntest-ldap-2.example.com
type=refreshAndPersist retry="5 +" searchbase="cn=config" bindmethod=simple
binddn="uid=admin,example,dc=com" credentials=secret
olcMirrorMode: TRUE
olcAccess: to * by by dn="uid=admin,dc=example,dc=com" write by
dn="uid=ldapadmin,ou=system,dc=oreillyauto,dc=com" read by * none


Any ideas on where I should be looking to make a correction or any other
information you need to help me figure this out?

Thank you,
Eric Speake
Web Systems Administrator
O'Reilly Auto Parts

This communication and any attachments are confidential, protected by Communications Privacy Act 18 USCS § 2510, solely for the use of the intended recipient, and may contain legally privileged material. If you are not the intended recipient, please return or destroy it immediately. Thank you.

References:
- Replicating schema
  - From: espeake@oreillyauto.com

Prev by Date: Re: Fwd: Example for SASL bind to Microsoft AD
Next by Date: Fwd: Fwd: Example for SASL bind to Microsoft AD
Index(es):
- Chronological
- Thread