From: Pavel Stoliarov <mylinux02@mail.ru> To: community@altlinux.ru Subject: [Comm] openldap и репликация Date: Wed, 8 Sep 2004 09:44:55 +0500 Message-ID: <200409080944.55789.mylinux02@mail.ru> (raw) Всем привет. Имеется Master 2.2 и OpenLdap 2.0.27-alt5 Несколько дней мучаюсь с репликациями, ни как не могу победить. Репликации с master slapd идут нормально на slave . В OpenLDAP Administrator's Guide написано : 1. The LDAP client submits an LDAP modify operation to the slave slapd. 2. The slave slapd returns a referral to the LDAP client referring the client to the master slapd. 3. The LDAP client submits the LDAP modify operation to the master slapd. 4. The master slapd performs the modify operation, writes out the change to its replication log file and returns a success code to the client. 5. The slurpd process notices that a new entry has been appended to the replication log file, reads the replication log entry, and sends the change to the slave slapd via LDAP. 6. The slave slapd performs the modify operation and returns a success code to the slurpd process. Вот именно это и не работает , при попытке удалить или добавить новый элемент на slave сервере , элемент просто удаляется или добавляется без запроса master slapd Конфиги : master slapd.conf : ... access to * by dn="cn=admin,dc=mycompany,dc=ru" write by * read ####################################################################### # ldbm database definitions ####################################################################### database ldbm suffix "dc=mycompany,dc=ru" rootdn "cn=admin,dc=mycompany,dc=ru" # Cleartext passwords, especially for the rootdn, should # be avoid. See slappasswd(8) and slapd.conf(5) for details. # Use of strong authentication encouraged. rootpw {SSHA}vWihzY6W+2FU8eiVZF4sLrZJG0Q93Sir # The database directory MUST exist prior to running slapd AND # should only be accessible by the slapd/tools. Mode 700 recommended. directory /var/lib/ldap/bases replica host=slave.mycompany.ru:389 binddn="cn=admin,dc=mycompany,dc=ru" bindmethod=simple credentials=test replogfile /var/log/ldap/replica.log .... ------------------------------------------------ slave slapd.conf : ..... access to * by dn="cn=admin,dc=mycompany,dc=ru" write by * read ####################################################################### # ldbm database definitions ####################################################################### database ldbm suffix "dc=mycompany,dc=ru" rootdn "cn=admin,dc=mycompany,dc=ru" # Cleartext passwords, especially for the rootdn, should # be avoid. See slappasswd(8) and slapd.conf(5) for details. # Use of strong authentication encouraged. rootpw {SSHA}vWihzY6W+2FU8eiVZF4sLrZJG0Q93Sir # The database directory MUST exist prior to running slapd AND # should only be accessible by the slapd/tools. Mode 700 recommended. directory /var/lib/ldap/bases updatedn "cn=admin,dc=mycompany,dc=ru" updateref ldap://master.mycompany.ru ...... -- Best regards Pavel Stoliarov
next reply other threads:[~2004-09-08 4:44 UTC|newest] Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top 2004-09-08 4:44 Pavel Stoliarov [this message] 2004-09-08 5:47 ` Dmitry Lebkov
Reply instructions: You may reply publicly to this message via plain-text email using any one of the following methods: * Save the following mbox file, import it into your mail client, and reply-to-all from there: mbox Avoid top-posting and favor interleaved quoting: https://en.wikipedia.org/wiki/Posting_style#Interleaved_style * Reply using the --to, --cc, and --in-reply-to switches of git-send-email(1): git send-email \ --in-reply-to=200409080944.55789.mylinux02@mail.ru \ --to=mylinux02@mail.ru \ --cc=community@altlinux.ru \ /path/to/YOUR_REPLY https://kernel.org/pub/software/scm/git/docs/git-send-email.html * If your mail client supports setting the In-Reply-To header via mailto: links, try the mailto: link
ALT Linux Community general discussions This inbox may be cloned and mirrored by anyone: git clone --mirror http://lore.altlinux.org/community/0 community/git/0.git # If you have public-inbox 1.1+ installed, you may # initialize and index your mirror using the following commands: public-inbox-init -V2 community community/ http://lore.altlinux.org/community \ mandrake-russian@linuxteam.iplabs.ru community@lists.altlinux.org community@lists.altlinux.ru community@lists.altlinux.com public-inbox-index community Example config snippet for mirrors. Newsgroup available over NNTP: nntp://lore.altlinux.org/org.altlinux.lists.community AGPL code for this site: git clone https://public-inbox.org/public-inbox.git