Re: multi master replication

[Andrew Findlay <andrew.findlay@skills-1st.co.uk>]

On Mon, Nov 24, 2014 at 02:01:44PM -0500, Guruprasad Kulkarni wrote:

> syncrepl rid=000 
>   provider=ldap://ldap2.example.com
>   type=refreshAndPersist
>   retry="5 5 300 +" 
>   searchbase="dc=example,dc=com"
>   attrs="*,+"
>   bindmethod=simple
>   binddn="cn=admin,ou=people,dc=example,dc=com"
>   credentials=secret

> My question is - Do the credentials have to be clear text passwords? If not,
> how do I mention encrypted passwords? (I tried within quotes ' ' and " ", but
> each time got invalid credentials error)

This clause configures the client side of the connection, so the
credentials must be a clear text password.

The other server will have an entry for cn=admin,ou=people,dc=example,dc=com
in its database, and the password in that entry should be hashed.

Obviously you must protect the config file carefully using OS-level
file permissions.

Andrew
-- 
-----------------------------------------------------------------------
|                 From Andrew Findlay, Skills 1st Ltd                 |
| Consultant in large-scale systems, networks, and directory services |
|     http://www.skills-1st.co.uk/                +44 1628 782565     |
-----------------------------------------------------------------------