Hi I resolved the problem. The symbolic links needed to a level deeper. E.g. ln -s /mnt/389ds/data/dirsrv dirsrv, instead of ln -s /mnt/389ds/data/ dirsrv. On Nov 15, 2015 15:14, "Andy Spooner" <[email protected]> wrote:
> Hi, > I am running 389-ds on CentOs 6.7. I am trying to move 389-ds off the disk > that contains my root to a second disk that has space for the directory to > grow. Can someone please advise on the correct way to move files and > maintain selinux contexts. I moved the files using the method below, but > logs cannot be written to - please see error message at the bottom of this > email. > > Setup > CentOs 6.7 > selinux= enforcing > Second disk /mnt/ds389/data/ > /mnt/389ds/log/ > > i used cp -rcp to copy and preserve SELINUX contexts and user rights > > 1. Stop dirsrv > 2. cp -rcp /var/lib/dirsrv/ /mnt/ds389/data/ > 3. Checked selinux context using ls -Z dirsrv > output: drwxrwx---. nobody nobody > unconfined_u:object_r:dirsrv_var_lib_t:s0 slapd-eu-vc-pmldap01 > 4. renamed /var/lib/dirsrv (keep original files under a different name) > 5. Create symbolic link # ln -s /mnt/389ds/data/ dirsrv > > Logs > 6. cp -rcp /var/log/dirsrv /mnt/389ds/log/ > 7. Checked selinux context for /mnt/389ds/log > drwx------. nobody nobody > unconfined_u:object_r:dirsrv_var_log_t:s0 admin-serv > drwxr-xr-x. nobody nobody unconfined_u:object_r:dirsrv_var_log_t:s0 > slapd-eu-vc-pmldap01 > > > 8. Renamed /var/log/dirsrv t > 9. Create symbolic link in /var/log ln -s /mtn/389ds/log/ dirsrv > > 10. Reboot server > 11 $ sudo service dirsrv start > > Error: > etc/dirsrv/slapd-xxxxxxxxx/dse.ldif: nsslapd-errorlog: Cannot open > errorlog file "/var/log/dirsrv/slapd-xxxxxxxxxx/errors", errors cannot be > logged. Exiting.... [15/Nov/2015:15:00:12 +0000] - WARNING: can't open file > /var/log/dirsrv/slapd-xxxxxxxx/access. errno 13 (Permission > denied)[15/Nov/2015:15:00:12 +0000] dse_read_one_file - The entry cn=config > in file /etc/dirsrv/slapd-xxxxx/dse.ldif (lineno: 10) is invalid, error > code 53 (Server is unwilling to perform) - Cannot open accesslog directory > "/var/log/dirsrv/slapd-xxxxxxx/access", client accesses will not be > logged.[15/Nov/2015:15:00:12 +0000] dse - Could not load config file > [dse.ldif][15/Nov/2015:15:00:12 +0000] dse - Please edit the file to > correct the reported problems and then restart the server. > > > > > > > > > > Kind regards >
-- 389 users mailing list [email protected] https://admin.fedoraproject.org/mailman/listinfo/389-users
