Re: [Freeipa-users] Command-line replication is not works in FreeIPA-Master

2016-09-01 Thread Andrey Rogovsky
Hi, Alexander! Thank for your reply I was read your link, but it not related my issue. I will start new thread, couse replica problem is resloved. 2016-09-01 11:10 GMT+03:00 Alexander Bokovoy : > On Thu, 01 Sep 2016, Andrey Rogovsky wrote: > >> Hi, Alexander! >> >> Than you very much for help.

Re: [Freeipa-users] Command-line replication is not works in FreeIPA-Master

2016-09-01 Thread Alexander Bokovoy
On Thu, 01 Sep 2016, Andrey Rogovsky wrote: Hi, Alexander! Than you very much for help. Now I able to start replica, but have one issue - schemes is not replicated: [01/Sep/2016:07:04:53 +] NSMMReplicationPlugin - Warning: unable to replicate schema to host ldap2, port 389. Continuing with

Re: [Freeipa-users] Command-line replication is not works in FreeIPA-Master

2016-09-01 Thread Andrey Rogovsky
Hi, Alexander! Than you very much for help. Now I able to start replica, but have one issue - schemes is not replicated: [01/Sep/2016:07:04:53 +] NSMMReplicationPlugin - Warning: unable to replicate schema to host ldap2, port 389. Continuing with total update session. [01/Sep/2016:07:04:53 +0

Re: [Freeipa-users] Command-line replication is not works in FreeIPA-Master

2016-09-01 Thread Alexander Bokovoy
On Thu, 01 Sep 2016, Andrey Rogovsky wrote: Hi, Alexander! I have ldap1 - FreeIPA (master) and ldap2 - 389DS (slave) I want one-way replica from ldap1 to ldap2 On ldap1 I was define dn replication user, replica and agreement On ldap2 I was define replica only: This is what you are doing wrong.

Re: [Freeipa-users] Command-line replication is not works in FreeIPA-Master

2016-08-31 Thread Andrey Rogovsky
Hi, Alexander! I have ldap1 - FreeIPA (master) and ldap2 - 389DS (slave) I want one-way replica from ldap1 to ldap2 On ldap1 I was define dn replication user, replica and agreement On ldap2 I was define replica only: filter: (objectclass=nsds5replica) requesting: All userApplication attributes # e

Re: [Freeipa-users] Command-line replication is not works in FreeIPA-Master

2016-08-31 Thread Alexander Bokovoy
On Thu, 01 Sep 2016, Andrey Rogovsky wrote: Hi, Alexander! Thank for fast reply. I have replication manager object: filter: (objectclass=organizationalPerson) requesting: All userApplication attributes # extended LDIF # # LDAPv3 # base with scope subtree # filter: (objectclass=organizationalPer

Re: [Freeipa-users] Command-line replication is not works in FreeIPA-Master

2016-08-31 Thread Andrey Rogovsky
Hi, Alexander! Thank for fast reply. I have replication manager object: filter: (objectclass=organizationalPerson) requesting: All userApplication attributes # extended LDIF # # LDAPv3 # base with scope subtree # filter: (objectclass=organizationalPerson) # requesting: ALL # # replication manage

Re: [Freeipa-users] Command-line replication is not works in FreeIPA-Master

2016-08-31 Thread Alexander Bokovoy
On Thu, 01 Sep 2016, Andrey Rogovsky wrote: Hi! Thanks for your advices! I'm try start replica and get this errors in log: [01/Sep/2016:03:24:23 +] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno

Re: [Freeipa-users] Command-line replication is not works in FreeIPA-Master

2016-08-31 Thread Andrey Rogovsky
Hi! Thanks for your advices! I'm try start replica and get this errors in log: [01/Sep/2016:03:24:23 +] slapi_ldap_bind - Error: could not bind id [cn=replication manager,cn=config] authentication mechanism [SIMPLE]: error 32 (No such object) errno 0 (Success) [01/Sep/2016:03:24:23 +] NSMMR

Re: [Freeipa-users] Command-line replication is not works in FreeIPA-Master

2016-08-31 Thread Mark Reynolds
On 08/31/2016 12:39 PM, Andrey Rogovsky wrote: > Hi, Mark! > > Thanks for explain. Now I create replication manager: (I hope) > [root@ldap1 ~]# ldapsearch -h ldap1.example.com > -p 389 -xLLL -D "cn=directory manager" -W > -b cn=config "cn=replication manager" > Enter LD

Re: [Freeipa-users] Command-line replication is not works in FreeIPA-Master

2016-08-31 Thread Andrey Rogovsky
Hi, Mark! Thanks for explain. Now I create replication manager: (I hope) [root@ldap1 ~]# ldapsearch -h ldap1.example.com -p 389 -xLLL -D "cn=directory manager" -W -b cn=config "cn=replication manager" Enter LDAP Password: dn: cn=replication manager,cn=config objectClass: inetorgperson objectClass:

Re: [Freeipa-users] Command-line replication is not works in FreeIPA-Master

2016-08-31 Thread Mark Reynolds
Hi Andrey, It looks like you still did not create the replication manager entry. You must create that manager entry on the standalone server. Please read the link I sent you: https://access.redhat.com/documentation/en-US/Red_Hat_Directory_Server/10/html/Administration_Guide/Creating_the_Suppli

Re: [Freeipa-users] Command-line replication is not works in FreeIPA-Master

2016-08-31 Thread Andrey Rogovsky
Hi! Thank you for fast reply. Yes, I want use standalone 389DS to replica from FreeIPA. There is my replica: filter: (objectclass=nsds5replica) requesting: All userApplication attributes # extended LDIF # # LDAPv3 # base with scope subtree # filter: (objectclass=nsds5replica) # requesting: ALL #

Re: [Freeipa-users] Command-line replication is not works in FreeIPA-Master

2016-08-31 Thread Mark Reynolds
On 08/31/2016 09:50 AM, Andrey Rogovsky wrote: > Hi! > > I try configure manual replica from FreeIPA DS to 389 DS. > I have two VM: ldap1.example.com and > ldap2.example.com > I was used this > manual > https://www.centos.org/docs/5/html/CDS/