Hi, I am having problems with slapadd process. I am using the following command line after shutting down the slapd process: /opt/openldap/sbin/slapadd -c -f /opt/openldap/etc/openldap/slapd.conf -l /extra/backup/slapcat-backupfile.ldif -d 5 The output is as follows: : : :
<<< dnNormalize: <cn=dcdadmin,ou=configengine,o=cisco,c=us> >>> dnPretty: <cn=dcdadmin,ou=configengine,o=cisco,c=us> <<< dnPretty: <cn=dcdadmin,ou=configengine,o=cisco,c=us> >>> dnNormalize: <cn=dcdadmin,ou=configengine,o=cisco,c=us> <<< dnNormalize: <cn=dcdadmin,ou=configengine,o=cisco,c=us> <= str2entry(cn=s4,ou=GenericDevices,ou=CNSDevices,ou=configengine,o=cisco, c=us) -> 0x81a7120 oc_check_required entry (cn=s4,ou=GenericDevices,ou=CNSDevices,ou=configengine,o=cisco,c=us), objectClass "IOSConfigClass" oc_check_allowed type "objectClass" oc_check_allowed type "AdminDevType" oc_check_allowed type "IOSConfigID" oc_check_allowed type "IOSEventID" oc_check_allowed type "cn" oc_check_allowed type "structuralObjectClass" oc_check_allowed type "entryUUID" oc_check_allowed type "creatorsName" oc_check_allowed type "createTimestamp" oc_check_allowed type "parent" oc_check_allowed type "IOSconfigtemplate" oc_check_allowed type "entryCSN" oc_check_allowed type "modifiersName" oc_check_allowed type "modifyTimestamp" => bdb_tool_entry_put( -1, "cn=s4,ou=GenericDevices,ou=CNSDevices,ou=configengine,o=cisco,c=us" ) => bdb_dn2id( "cn=s4,ou=genericdevices,ou=cnsdevices,ou=configengine,o=cisco,c=us" ) <= bdb_dn2id: got id=0x0000004c => entry_encode(0x0000004c): cn=s4,ou=GenericDevices,ou=CNSDevices,ou=configengine,o=cisco,c=us => bdb_tool_entry_put: id2entry_add failed: DB_KEYEXIST: Key/data pair already exists (-30996) => bdb_tool_entry_put: txn_aborted! DB_KEYEXIST: Key/data pair already exists (-30996) slapadd: could not add entry dn="cn=s4,ou=GenericDevices,ou=CNSDevices,ou=configengine,o=cisco,c=us" (line=1163): txn_aborted! DB_KEYEXIST: Key/data pair already exists (-30996) slapadd shutdown: initiated Its adding all the data & skipping already existing enteries. However after slapadd shutdown: initiated is initiated nothing happens further. It simply hangs. The only way I can get out of this is by killing the slapadd process from another window. My slapd.conf : ucdata-path "/opt/openldap/share/openldap/ucdata" # # See slapd.conf(5) for details on configuration options. # This file should NOT be world readable. # include /opt/openldap/etc/openldap/schema/core.schema include /opt/openldap/etc/openldap/schema/cosine.schema include /opt/openldap/etc/openldap/schema/inetorgperson.schema include /opt/CSCOimgw/schema/imgw.schema include /opt/CSCOnsm/schema/NSMapper.schema include /opt/CSCOcnsie/schema/cfg.schema # Define global ACLs to disable default read access. # Do not enable referrals until AFTER you have a working directory # service AND an understanding of referrals. #referral ldap://root.openldap.org pidfile /opt/openldap/var/run/slapd.pid argsfile /opt/openldap/var/run/slapd.args # Load dynamic backend modules: # modulepath ${CISCO_CE_INSTALL_ROOT}/openldap/libexec/openldap # moduleload back_bdb.la # moduleload back_ldap.la # moduleload back_ldbm.la # moduleload back_passwd.la # moduleload back_shell.la # Sample security restrictions # Require integrity protection (prevent hijacking) # Require 112-bit (3DES or better) encryption for updates # Require 63-bit encryption for simple bind # security ssf=1 update_ssf=112 simple_bind=64 # Sample access control policy: # Root DSE: allow anyone to read it # Subschema (sub)entry DSE: allow anyone to read it # Other DSEs: # Allow self write access # Allow authenticated users read access # Allow anonymous users to authenticate # Directives needed to implement policy: # access to dn.base="" by * read # access to dn.base="cn=Subschema" by * read # access to * # by self write # by users read # by anonymous auth # # if no access controls are present, the default policy # allows anyone and everyone to read anything but restricts # updates to rootdn. (e.g., "access to * by * read") # # rootdn can always read and write EVERYTHING! ####################################################################### # BDB database definitions ####################################################################### database bdb suffix "ou=configengine,o=cisco,c=us" rootdn "cn=dcdadmin,ou=configengine,o=cisco,c=us" rootpw cisco # Cleartext passwords, especially for the rootdn, should # be avoid. See slappasswd(8) and slapd.conf(5) for details. # Use of strong authentication encouraged. # The database directory MUST exist prior to running slapd AND # should only be accessible by the slapd and slap tools. # Mode 700 recommended. directory /opt/openldap/var/openldap-data dbnosync checkpoint 1000 30 # Indices to maintain index objectClass eq index IOSEventID eq index IOSConfigID eq index cn eq,sub System : BDB: 4.3.28 Openldap : 2.2.26 Any idea what is going wrong & what needs to be done ? Warm Regards, Rohit
