(linux-br)Problemas na replicação do ldap

Sun, 18 Sep 2005 10:47:18 -0700 

Bom dia,
Eu não sou muito experiente em LDAP, porém venho utilizando para diversos serviços com sucesso. Nesses dias, precisei realizar uma replicação da base para outro servidor LDAP localizado em uma outra rede (da filial), porém, isso não vem ocorrendo. O slurpd no master consegue criar os diff normalmente, porém, na hora de enviar, aparece as seguintes mensagens nos logs do slave: 

Sep 14 09:50:26 pst-pra-frw01 slapd[20171]: connection_get(17)
Sep 14 09:53:12 pst-pra-frw01 slapd[20171]: connection_get(16)

Sep 14 09:53:12 pst-pra-frw01 slapd[20171]: send_ldap_result: err=49 
matched="" text=""

Sep 14 09:53:12 pst-pra-frw01 slapd[20171]: connection_get(16)
Sep 14 09:54:12 pst-pra-frw01 slapd[20171]: connection_get(16)

Sep 14 09:54:12 pst-pra-frw01 slapd[20171]: send_ldap_result: err=49 
matched="" text=""

Sep 14 09:54:12 pst-pra-frw01 slapd[20171]: connection_get(16)
Sep 14 09:55:12 pst-pra-frw01 slapd[20171]: connection_get(16)

Sep 14 09:55:12 pst-pra-frw01 slapd[20171]: send_ldap_result: err=49 
matched="" text=""


Estou usando o Mandriva 2005


slapd.conf do slave:

include /usr/share/openldap/schema/core.schema
include /usr/share/openldap/schema/cosine.schema
include /usr/share/openldap/schema/corba.schema
include /usr/share/openldap/schema/inetorgperson.schema
include /usr/share/openldap/schema/misc.schema
include /usr/share/openldap/schema/nis.schema
include /usr/share/openldap/schema/openldap.schema
include /usr/share/openldap/schema/samba.schema
include /etc/openldap/schema/local.schema

pidfile         /var/run/ldap/slapd.pid
argsfile        /var/run/ldap/slapd.args

loglevel 100

modulepath      /usr/lib/openldap

database        ldbm
checkpoint      1024    5
cachesize       10000
suffix          "dc=empresa,dc=com,dc=br"
rootdn          "cn=Manager,dc=empresa,dc=com,dc=br"
rootpw          senha

directory       /var/lib/ldap

index   objectClass,uidNumber,gidNumber                 eq
index   cn,sn,uid,displayName                           pres,sub,eq
index   memberUid,mail,givenname                        eq,subinitial
index   sambaSID,sambaPrimaryGroupSID,sambaDomainName   eq

access to attr=userPassword
       by dn="cn=Manager,dc=empresa,dc=com,dc=br" write
       by anonymous auth
       by self write
       by * none

access to attrs=userPassword,sambaLMPassword,sambaNTPassword
       by self write
       by anonymous auth
       by * none
access to *
       by * read

access to *
       by dn="cn=Manager,dc=empresa,dc=com,dc=br" write
       by self write
       by * read

updatedn "cn=Manager,dc=empresa,dc=com,dc=br"
updateref ldap://fs01


slapd.conf do master:

include /usr/share/openldap/schema/core.schema
include /usr/share/openldap/schema/cosine.schema
include /usr/share/openldap/schema/corba.schema
include /usr/share/openldap/schema/inetorgperson.schema
include /usr/share/openldap/schema/misc.schema
include /usr/share/openldap/schema/nis.schema
include /usr/share/openldap/schema/openldap.schema
include /usr/share/openldap/schema/samba.schema
include /etc/openldap/schema/local.schema

pidfile         /var/run/ldap/slapd.pid
argsfile        /var/run/ldap/slapd.args


loglevel 100

modulepath      /usr/lib/openldap

database        ldbm

checkpoint      1024    5                                  
cachesize       10000

suffix          "dc=empresa,dc=com,dc=br"
rootdn          "cn=Manager,dc=empresa,dc=com,dc=br"
rootpw          senha

directory       /var/lib/ldap

index   objectClass,uidNumber,gidNumber                 eq
index   cn,sn,uid,displayName                           pres,sub,eq
index   memberUid,mail,givenname                        eq,subinitial
index   sambaSID,sambaPrimaryGroupSID,sambaDomainName   eq

access to attr=userPassword
       by dn="cn=Manager,dc=empresa,dc=com,dc=br" write
       by anonymous auth
       by self write
       by * none

access to attrs=userPassword,sambaLMPassword,sambaNTPassword
       by self write
       by anonymous auth
       by * none
access to *
       by * read

access to *
       by dn="cn=Manager,dc=empresa,dc=com,dc=br" write
       by self write
       by * read

replogfile /var/lib/ldap/replica/slurpd.replog
replica host=pra:389
       binddn="cn=Manager,dc=empresa,dc=com,dc=br"
       bindmethod=simple
       credentials=ldapsecretpass
       tls=yes

Pergunto:


* A credentials, localizada na configuração do master é referente ao 
rootpw do slave?
* As permissões que eu deixei, estão corretas, pois o Manager ter 
permissão global?


[]s

Roger
---------------------------------------------------------------------------
Esta lista é patrocinada pela Conectiva S.A. Visite http://www.conectiva.com.br

Arquivo: http://bazar2.conectiva.com.br/mailman/listinfo/linux-br
Regras de utilização da lista: http://linux-br.conectiva.com.br
FAQ: http://www.zago.eti.br/menu.html














    











					Responder a