"Or Goshen" <[EMAIL PROTECTED]> writes: > Hello > > I have the following situation and would like to know your opinion on the > matter: > > I have 2 slapd servers A and B, both require simple authentication and are not > open for anonymous access. > What I would like to do is setup a node on A that would reference the root of > B and would allow me to perform read/write to it. > > I tried so far: > > 1. Setup a "referral" objectClass on A in the following manner: > > dn: dc=B,ou=Subservers,dc=example,dc=com > dc: B > objectClass: referral > objectClass: extensibleObject > ref: ldap://B/dc=example,dc=com > > That didnt work since B requires authentication. So I tried this: > > dn: dc=B,ou=Subservers,dc=example,dc=com > dc: B > objectClass: referral > objectClass: extensibleObject > ref: ldap://??B??!bindname=cn=Manager%2cdc=example%2cdc=com/dc=example,dc=com > > Didnt work either (authentication extension not supported ?). > > 2. slapd apparently supports an "ldap" backend/database. Problem is that there > is no real documentation here or here on how to set them up. Anybody ever > setup such a database/backend ? does it support authentication ? any examples > I can take a look at ? > > I dont want to replication B on A, I just want to act as a proxy.
There is plenty of information on back-ldap available, http://www.openldap.org/faq/data/cache/532.html For more details see man slapd-ldap(5), man slapd-meta(5) and try to glue databases, following configfuration is just a simple hint database bdb suffix dc=A,ou=subservers,dc=example,dc=com ... subordinate database ldap suffix ou=subservers,dc=example,dc=com uri ldap://host.example.com ... -Dieter -- Dieter Klünter | Systemberatung http://www.dkluenter.de GPG Key ID:8EF7B6C6
