[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Consumer replication 0 entries fetched - CSN problem?

To: Josh Nielsen <jnielsen@hudsonalpha.org>, openldap-technical@openldap.org
Subject: Re: Consumer replication 0 entries fetched - CSN problem?
From: Michael Ströder <michael@stroeder.com>
Date: Tue, 16 Sep 2014 17:16:51 +0200
In-reply-to: <CANX+b1+s83nBGyVq4iFcT1tsY3m8T05yqkWV2LeXR8FHaXnK7A@mail.gmail.com>
References: <CANX+b1+s83nBGyVq4iFcT1tsY3m8T05yqkWV2LeXR8FHaXnK7A@mail.gmail.com>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:29.0) Gecko/20100101 Firefox/29.0 SeaMonkey/2.26.1

Josh Nielsen wrote:
> OLC server (LDAP01 - version 2.4.23) the new master and threw up a new
> VM called LDAP02 (2.4.23) to become the new sync replication
> slave/consumer.

Don't use such an ancient version which is four years old now.
Many syncrepl issues have been fixed since then (and are to be fixed in
upcoming 2.4.40).

And better don't argue that you have to use your favourite distribution's
packages. We had this discussion here numerous times.

And of course it could be a ACL issue in your particular configuration.
In particular you have

olcRootDN: cn=admin,dc=mydomain,dc=org

but

olcSyncrepl: {0} [..] binddn="cn=root,dc=mydomain,dc=org"

Anyway you should not use rootdn for anything. Set up proper group-based ACLs
for service accounts instead.

...

Ciao, Michael.

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

Follow-Ups:
- Re: Consumer replication 0 entries fetched - CSN problem?
  - From: Josh Nielsen <jnielsen@hudsonalpha.org>

References:
- Consumer replication 0 entries fetched - CSN problem?
  - From: Josh Nielsen <jnielsen@hudsonalpha.org>

Prev by Date: Consumer replication 0 entries fetched - CSN problem?
Next by Date: Re: Consumer replication 0 entries fetched - CSN problem?
Index(es):
- Chronological
- Thread