On Tue, Jul 17, 2012 at 5:06 PM, Aaron Richton rich...@nbcs.rutgers.edu wrote:
On Tue, 17 Jul 2012, Pieter Baele wrote:
Given databases:
--- dc=common,dc=example,dc=org
--- dc=shared,dc=example,dc=org
--- dc=companyA,dc=example,dc=org
--- dc=companyB,dc=example,dc=org
---
On Tue, Jul 17, 2012 at 7:42 PM, Gavin Henry ghe...@suretecsystems.com wrote:
What lives under ou=CompanyA etc? User accounts? Something we do for
this to keep the DIT level shallow, is to keep all user accounts in
ou=Users and filter based on o=CompanyA which is an attribute on that
user
On 17/7/2012 9:04 μμ, Evgeniy Kosov wrote:
The issue I'm facing as stated above is regarding the syncrepl and
attribute order.
What version of Openldap are you using on provider and consumers?
What backends are you using? Which versions thereof?
Nick
Evgeniy Kosov wrote:
Hi there,
First of all, I'm new to this list, so, please, forgive me if this is a
wrong place for the questions below, and feel free to redirect me
wherever is more appropriate.
The issue I'm facing as stated above is regarding the syncrepl and
attribute order.
On 18.07.2012 11:25, Nick Milas wrote:
On 17/7/2012 9:04 μμ, Evgeniy Kosov wrote:
The issue I'm facing as stated above is regarding the syncrepl and
attribute order.
What version of Openldap are you using on provider and consumers?
Provider:
openldap-server-2.4.23 on FreeBSD 8.1-RELEASE
On 18.07.2012 13:31, Howard Chu wrote:
[...]
Is that replacing of misplaced attributes by syncrepl is expected
behaviour or just a side effect of its syncrepl_diff_entry diff'ing
algorithm?
Yes.
Did this mean Yes, this behaviour is expected (and intended) or Yes,
that is a side effect?
On 18.07.2012 15:49, Howard Chu wrote:
Evgeniy Kosov wrote:
On 18.07.2012 13:31, Howard Chu wrote:
Does attribute order matter? Is it specified somehow (sorted by
modification time?)?
No, attribute order in LDAP is unspecified.
Then why does syncrepl try to reorder attributes in a backend?
Evgeniy Kosov wrote:
On 18.07.2012 15:49, Howard Chu wrote:
Evgeniy Kosov wrote:
On 18.07.2012 13:31, Howard Chu wrote:
Does attribute order matter? Is it specified somehow (sorted by
modification time?)?
No, attribute order in LDAP is unspecified.
Then why does syncrepl try to reorder
Hello Aaron,
You say that:
One method also worth putting on the table is hosting the single backend
dc=example,dc=org on your master and selectively replicating appropriate
portions of the DIT using appropriate filters. (Howard recently posted to
the list on the best practices to execute
Hi,
whereis the best place to store the private e-mail address of an
inetOrgPerson?
Is the order of the attribute's values fixed? So I could save the
business address as first value and the private as second? May the first
value be empty?
Would an auxiliary class be better? Which one?
Thank
Le 16/07/2012 13:55, chris_n...@arcor.de a écrit :
Hi,
whereis the best place to store the private e-mail address of an
inetOrgPerson?
Is the order of the attribute's values fixed? So I could save the
business address as first value and the private as second? May the first
value be empty?
I
On 18/7/2012 6:47 μμ, Francois Gnu wrote:
Can you put the link of the Howard's post, please?
I believe he meant this post:
http://www.openldap.org/lists/openldap-technical/201004/msg00035.html
which was referred-to recently in this thread:
I am struggling to find documentation on how to use the cn=config syntax
for delegating a subdomain to a group of users.
In my situation, I have an OU setup for customer accounts.
(ou=subdomain,ou=People,dc=example,dc=com). I can currently edit that if
I log in as a user that is our admin OU,
On Wed, 18 Jul 2012, Pieter Baele wrote:
Had some problems configuring subordinate, a conflict, because of the
suffix. Can you give an example based on my example? :-S
Ordering counts. The OpenLDAP test suite test012 is a worked example; run
that and read testrun/slapd.1.conf to get started.
We are using OpenLDAP at present. But we are anticipating a huge growth in number of users.We are intented to support 300,000 users. Is that possible with openLDAP?Has any body tried it?Also can i define various roles inside openldap?Can I also define groups inside openldap?
Jignesh PatelChief
I have setup my slapd.conf file with the directives for syncrepl with
mirrormode on. This seems to cause issues with any write operations that
occur after setup.
(syncrepl does work with the provider/consumer setup but so far not with
mirrormode)
I am now guessing that mirrormode is in fact NOT
--On Wednesday, July 18, 2012 2:31 PM -0500 Houston Ray
houston.r.hopk...@gmail.com wrote:
I have setup my slapd.conf file with the directives for syncrepl with
mirrormode on. This seems to cause issues with any write operations
that occur after setup.
MMR was introduced in the 2.4
{0}to attrs=userPassword by self write by anonymous auth by
dn.children=ou=admins,dc=example,dc=com write by
group.exact=cn=cust_support,ou=group,dc=example,dc=com write by * none
{1}to dn.subtree=ou=subdomain,ou=People,dc=example,dc=com by self write by
I also have bt full output if needed.
Since restarting I have seen no issues with any of the instances and the
failed instance synced without issue.
Let me know if I should create an ITS.
Thanks,
Dave
Hi Dave,
Have you been able to reproduce it since?
Thanks.
--
Kind Regards,
Hello everybody,
I am trying to replicate an accesslog database (cn=accesslog) from a
provider to 2 consumers.
The replication works fine except that old accesslog entries that get
removed via logpurge 07+00:00 01+00:00 on the provider
do not get removed from the replicas.
over time the
Hi Dave,
Have you been able to reproduce it since?
Thanks.
So far I've only had the one failure and I haven't been able to
reproduce it since.
That's tricky then. Did you file an ITS? Will check...
--
Kind Regards,
Gavin Henry.
Managing Director.
T +44 (0) 1224 279484
M +44 (0) 7930
21 matches
Mail list logo
