Re: permissions replication

2018-07-01 Thread Dieter Klünter 
Am Sun, 1 Jul 2018 14:35:27 +0200
schrieb Miroslav Misek :

> Hi,
> 
> I am setting up master-slave replication for our off-site office, so
> it can use authentication against ldap even with internet
> connectivity issues. Replication itself is working without problems.
> But it replicates only data and not olcAccess attributes on database.
> So I have to set them manually.
> 
> Please is there any way to replicate those attributes too?
> 
> I found only one way, and it is master-master replication of
> cn=config database.
> And it is not usable in our environment. Off-site office don`t have 
> public ip. And it is better for me to have this ldap instance
> read-only.

You may consider the experimental aci model instead of stadard acl
model, as defined in slapd.access(5)
http://www.openldap.org/faq/data/cache/634.html

-Dieter


-- 
Dieter Klünter | Systemberatung
http://sys4.de
GPG Key ID: E9ED159B
53°37'09,95"N
10°08'02,42"E

Antw: Performance problem with slapd instances.

2018-07-01 Thread Ulrich Windl 
>>> Saurabh Lahoti  schrieb am 27.06.2018 um 23:44 
>>> in
Nachricht
:
> Dear,
> 
> We've started observing strange & peculiar performance behavior for slapd
> instances. While ldap bind response is more than 1.5 second on one server
> then on another it's just 0.006 seconds.
> 
> Both the servers have similar OS, system resources & ldap version.
> 
> OS: RHEL 6.9
> LDAP: 2.4.44
> Backend: bdb
> 
> Could you please suggest some probable causes..?

Could it be a slow local disk?

> 
> 
> Thanks & Kind Regards,
> Saurabh Lahoti.

sql backend & upate data

2018-07-01 Thread Arianna Milazzo 
Hello!
I use openLDAP with a sql backend.
I use mySQL with InnoDB engine.

Well, if I modify a data on db, I can't see the new value on openLDAP until
I restart it. :O
I can't restart openLDAP every time I modify something!

Any solution?

Thanks,
Arianna

permissions replication

2018-07-01 Thread Miroslav Misek 

Hi,

I am setting up master-slave replication for our off-site office, so it 
can use authentication against ldap even with internet connectivity issues.
Replication itself is working without problems. But it replicates only 
data and not olcAccess attributes on database. So I have to set them 
manually.


Please is there any way to replicate those attributes too?

I found only one way, and it is master-master replication of cn=config 
database.
And it is not usable in our environment. Off-site office don`t have 
public ip. And it is better for me to have this ldap instance read-only.


Thank you,
Miroslav Misek

Re: sql backend & upate data

2018-07-01 Thread Arianna Milazzo 
Hello Frederik!
Did you find any solution for InnoDB "commit"  problem?

Thanks

2018-06-29 11:48 GMT+02:00 Arianna Milazzo :

> Hello!
> I use openLDAP with a sql backend.
> I use mySQL with InnoDB engine.
>
> Well, if I modify a data on db, I can't see the new value on openLDAP
> until I restart it. :O
> I can't restart openLDAP every time I modify something!
>
> Any solution?
>
> Thanks,
> Arianna
>
>