On Wednesday 18 October 2006 11:36, Thomas Cataldo wrote:
> Hi,
>
> I'm having trouble setting up syncrepl beetween 2 openldap 2.3.27 servers.
>
> When I run the consumer with "full debug" I see that the data I want
> to replicate is transfered correctly, but the consumer "fails to store
> it". The sync ends with :
>
> do_syncrep2: got search entry without control
>
> Sync phase in the consumer logs :
>
> =>do_syncrepl
>
> =>do_syncrep2
>
> ldap_result ld 0x819f6d0 msgid -1
>
> ldap_chkResponseList ld 0x819f6d0 msgid -1 all 0
>
> ldap_chkResponseList returns ld 0x819f6d0 NULL
>
> wait4msg ld 0x819f6d0 msgid -1 (timeout 0 usec)
>
> wait4msg continue ld 0x819f6d0 msgid -1 all 0
>
> ** ld 0x819f6d0 Connections:
>
> * host: 172.24.239.122 port: 389 (default)
>
> refcnt: 2 status: Connected
>
> last used: Wed Oct 18 11:33:40 2006
>
>
>
> ** ld 0x819f6d0 Outstanding Requests:
>
> * msgid 2, origid 2, status InProgress
>
> outstanding referrals 0, parent count 0
>
> ** ld 0x819f6d0 Response Queue:
>
> Empty
>
> ldap_chkResponseList ld 0x819f6d0 msgid -1 all 0
>
> ldap_chkResponseList returns ld 0x819f6d0 NULL
>
> ldap_int_select
>
> read1msg: ld 0x819f6d0 msgid -1 all 0
>
> ber_get_next
>
> ber_get_next: tag 0x30 len 692 contents:
>
> read1msg: ld 0x819f6d0 msgid 2 message type search-entry
>
> ber_scanf fmt ({xx) ber:
>
> do_syncrep2: got search entry without control
>
> My slapd.conf on consumer looks like :
>
>
> backend bdb
> checkpoint 512 30
>
>
> database bdb
> suffix "dc=actia,dc=com"
> directory "/var/lib/ldap"
> index objectClass,entryCSN,entryUUID eq
> lastmod on
> replogfile /var/lib/ldap/replog
>
> # seems mandatory for syncrepl
> rootdn cn=admin,dc=actia,dc=com
>
> access to attrs=userPassword
> by anonymous auth
> by self write
> by * none
>
> access to dn.base="" by * read
>
> access to * by * read
>
> syncrepl rid=112
> provider=ldap://172.24.239.122:389
> type=refreshAndPersist
> interval=00:00:00:20
> retry="5 +"
> searchbase="ou=Filiale2,dc=actia,dc=com"
> scope=one
> filter="(objectClass=posixAccount)"
> binddn="cn=syncuser,dc=actia,dc=com"
> bindmethod=simple
> credentials=synchro
> schemachecking=off
>
> On the provider it looks like :
>
> database bdb
> suffix "dc=actia,dc=com"
> directory "/var/lib/ldap"
> index objectClass,entryCSN,entryUUID eq
> lastmod on
>
> access to attrs=userPassword
> by dn="cn=admin,dc=actia,dc=com" write
> by dn="cn=syncuser,dc=actia,dc=com" read
> by anonymous auth
> by self write
> by * none
>
> access to dn.base="" by * read
>
> access to *
> by dn="cn=admin,dc=actia,dc=com" write
> by * readSurely you need: overlay syncprov before the next lines: > > syncprov-checkpoint 100 10 > syncprov-sessionlog 100 > > I would take any hint on why my data is transfered but not stored. > Also, you haven't provided your syncuser with unlimited (size/time) access, which you most likely want to do. Regards, Buchan -- Buchan Milne ISP Systems Specialist - Monitoring/Authentication Team Leader B.Eng,RHCE(803004789010797),LPIC-2(LPI000074592)
pgpg8w6YEjcPu.pgp
Description: PGP signature
