database monitor
rootdn cn=manager,ou=tree12,ou=name
rootpw root-password
access to dn.subtree=ou=tree12,ou=name
by peername.ip=127.0.0.1 read
by * none
--
Nick Urbanik http://nicku.org 808-71011 nick.urba...@optusnet.com.au
GPG: 7FFA CDC7 5A77 0558 DC7A 790A 16DF EC5B
decides which master is
getting the writes at present?
Although our slaves are busy, surviving network issues with data
consistent and correct is very important. Network outages and strange
disconnects are the rule without automated configuration management
for network devices.
--
Nick Urbanik http
Dear Quanah,
On 05/09/12 10:06 -0700, Quanah Gibson-Mount wrote:
--On Wednesday, September 05, 2012 7:00 PM +1000 Nick Urbanik
nick.urba...@optusnet.com.au wrote:
I am setting up mirror mode masters both in the same data centre,
with one slave offsite. Should all the slaves slave from both
Dear Quanah,
On 05/09/12 13:52 -0700, Quanah Gibson-Mount wrote:
--On Thursday, September 06, 2012 6:46 AM +1000 Nick Urbanik ni...@nicku.org
wrote:
So while I cannot use delta-syncrepl *between* the two mirror-mode
masters, I *can* use delta-syncrepl on our eight consumers slaving
*from
Dear Quanah,
Thank you for your generous help.
On 21/08/12 07:32 -0700, Quanah Gibson-Mount wrote:
--On Tuesday, August 21, 2012 4:03 PM +1000 Nick Urbanik
nick.urba...@optusnet.com.au wrote:
Dear Folks,
I'm upgrading a cluster of OpenLDAP servers from 2.3.43-25.el5 to
2.4.32 with BDB
On 21/08/12 14:27 -0700, Quanah Gibson-Mount wrote:
--On Wednesday, August 22, 2012 7:15 AM +1000 Nick Urbanik
ni...@nicku.org wrote:
I would strongly advise examining using a shared memory key for that
DB as well.
Okay: I could create that with a command like
ipcmk -M 16777216
Dear Quanah,
Thank you again. You are most generous!
On 21/08/12 14:40 -0700, Quanah Gibson-Mount wrote:
--On Wednesday, August 22, 2012 7:37 AM +1000 Nick Urbanik
ni...@nicku.org wrote:
On 21/08/12 14:27 -0700, Quanah Gibson-Mount wrote:
--On Wednesday, August 22, 2012 7:15 AM +1000 Nick
result in any marked
increased load on any of the servers?
--
Nick Urbanik http://nicku.org ni...@nicku.org
GPG: 7FFA CDC7 5A77 0558 DC7A 790A 16DF EC5B BB9D 2C24 ID: BB9D2C24
being consumers to two masters result in any marked
increased load on any of the servers?
--
Nick Urbanik http://nicku.org 808-71011 nick.urba...@optusnet.com.au
GPG: 7FFA CDC7 5A77 0558 DC7A 790A 16DF EC5B BB9D 2C24 ID: BB9D2C24
I disclaim, therefore I am.
some
more experiments.
I would be glad to hear of the results of your work.
--
Nick Urbanik http://nicku.org 808-71011 nick.urba...@optusnet.com.au
GPG: 7FFA CDC7 5A77 0558 DC7A 790A 16DF EC5B BB9D 2C24 ID: BB9D2C24
I disclaim, therefore I am.
Dear Quanah and Howard,
Thank you both very much for your help.
On 27/08/12 00:40 -0700, Howard Chu wrote:
Quanah Gibson-Mount wrote:
--On Monday, August 27, 2012 9:42 AM +1000 Nick Urbanik
nick.urba...@optusnet.com.au wrote:
Dear Folks,
I have a large production 2.4.32 LDAP server slaving
memory.
To convert this, do I need to slapcat the directories and restore them
after the configuration change with slapadd, or is it sufficient to
use db_recover in each LDAP database after changing the configuration
while slapd is stopped?
--
Nick Urbanik http://nicku.org 808-71011 nick.urba
list
QUESTIONS:
==
Any suggestions on how to optimise this a little more towards slapadd?
Would mdb possibly be faster than bdb?
--
Nick Urbanik http://nicku.org 808-71011 nick.urba...@optusnet.com.au
GPG: 7FFA CDC7 5A77 0558 DC7A 790A 16DF EC5B BB9D 2C24 ID: BB9D2C24
I disclaim, therefore
IP methods -- split brain, false positives, what
have you -- and OpenLDAP will likely serve you well.
--
Nick Urbanik http://nicku.org 808-71011 nick.urba...@optusnet.com.au
GPG: 7FFA CDC7 5A77 0558 DC7A 790A 16DF EC5B BB9D 2C24 ID: BB9D2C24
I disclaim, therefore I am.
at info priority with loglevel -1?
2. Does anyone have any suggestions of what I may be missing here?
--
Nick Urbanik http://nicku.org 808-71011 nick.urba...@optusnet.com.au
GPG: 7FFA CDC7 5A77 0558 DC7A 790A 16DF EC5B BB9D 2C24 ID: BB9D2C24
I disclaim, therefore I am.
impractical
to use at that level.
Are you sure this is correct? If so, then no logging is practical
with OpenLDAP, which would be rather sad.
--
Nick Urbanik http://nicku.org 808-71011 nick.urba...@optusnet.com.au
GPG: 7FFA CDC7 5A77 0558 DC7A 790A 16DF EC5B BB9D 2C24 ID: BB9D2C24
I disclaim
Dear Aaron,
On 19/09/11 19:40 -0400, Aaron Richton wrote:
On Tue, 20 Sep 2011, Nick Urbanik wrote:
What I have said is that with *only* loglevel stats, in our production
servers, the write load is excessive, sometimes filling up the hard
They can be large. We rotate (including compression
to need to
come up with the person with that time and motivation.
That person would be me. I would be happy to do the work if the
prospect exists of me working towards getting the changes incorporated
into the main OpenLDAP code base. This change would be very useful to us.
--
Nick Urbanik http
much. Can anyone suggest a useful log level here?
It would be great to have some control over the verbosity of logging
of each subsystem; for example, we cannot log any information about
syncrepl, as that would totally fill our disks.
--
Nick Urbanik http://nicku.org 808-71011 nick.urba
On 28/07/11 10:52 +1000, Nick Urbanik wrote:
We want *some* logging, but we don't want too much. Can anyone
suggest a useful log level here?
It would be great to have some control over the verbosity of logging
of each subsystem; for example, we cannot log any information about
syncrepl
Dear Folks,
What is the best/right way to exempt system users (entries that have the
simpleSecurityObject objectclass) from the ppolicy default policy?
Is it to create another policy without restrictions and specify that
each system user should use that policy using pwdPolicySubentry?
--
Nick
problems with these configuration files, please let me
know, even if they do not relate to the problem of syncrepl
terminating after master is restarted.
I will send further information if that would help; please let me know
what would cast light on this.
--
Nick Urbanik http://nicku.org 808-71011
sense.
[r...@ldapro04.syd ~]# grep -P '\bretry' /var/log/ldap*
[r...@ldapro04.syd ~]#
No such error message seems to be present.
--
Nick Urbanik http://nicku.org 808-71011 nick.urba...@optusnet.com.au
GPG: 7FFA CDC7 5A77 0558 DC7A 790A 16DF EC5B BB9D 2C24 ID: BB9D2C24
I disclaim, therefore I
reply! I will happily buy you a beer or beverage of your choice if I
see you at Linuxconf or elsewhere.
--
Nick Urbanik http://nicku.org 808-71011 nick.urba...@optusnet.com.au
GPG: 7FFA CDC7 5A77 0558 DC7A 790A 16DF EC5B BB9D 2C24 ID: BB9D2C24
I disclaim, therefore I am.
Dear Quanah,
On 29/06/10 08:51 -0700, Quanah Gibson-Mount wrote:
--On Monday, June 28, 2010 11:42 AM +1000 Nick Urbanik
nick.urba...@optusnet.com.au wrote:
On 25/06/10 10:41 -0700, Quanah Gibson-Mount wrote:
--On Friday, June 25, 2010 9:58 AM +1000 Nick Urbanik
nick.urba...@optusnet.com.au
Dear Quanah,
Thanks again for taking the time to write a detailed and helpful
reply.
On 25/06/10 10:41 -0700, Quanah Gibson-Mount wrote:
--On Friday, June 25, 2010 9:58 AM +1000 Nick Urbanik
nick.urba...@optusnet.com.au wrote:
On 23/06/10 21:46 -0700, Quanah Gibson-Mount wrote:
--On Thursday
Dear Quanah,
Thank you again for your very helpful replies.
On 22/06/10 07:57 -0700, Quanah Gibson-Mount wrote:
--On Tuesday, June 22, 2010 12:24 PM +1000 Nick Urbanik
nick.urba...@optusnet.com.au wrote:
If so, does that mean that with syncrepl, the above operation is
reduced
Dear Howard,
On 22/06/10 07:31 -0700, Howard Chu wrote:
Nick Urbanik wrote:
Dear Folks,
I am trying to improve my understanding of the RID before making many
large deployments of syncrepl.
My understanding is that the replica ID (RID) is unique within one
level of [provider] -- [consumer
Dear Quanah,
On 22/06/10 08:04 -0700, Quanah Gibson-Mount wrote:
--On Tuesday, June 22, 2010 12:00 PM +1000 Nick Urbanik
nick.urba...@optusnet.com.au wrote:
Dear Folks,
I am trying to improve my understanding of the RID before making many
large deployments of syncrepl.
The RID uniquely
Dear Howard,
Thank you for taking the time to answer.
On 22/06/10 07:34 -0700, Howard Chu wrote:
Nick Urbanik wrote:
Dear Folks,
With slurpd, copying a tree from one slave to another was like this:
1. stop slapd on both slaves.
2. netcat the directory across from one slave to the other.
3
and restore?
Is the RID stored in the data? Where is it stored, besides in the
consumer's syncrepl configuration?
--
Nick Urbanik http://nicku.org 808-71011 nick.urba...@optusnet.com.au
GPG: 7FFA CDC7 5A77 0558 DC7A 790A 16DF EC5B BB9D 2C24 ID: BB9D2C24
I disclaim, therefore I am.
for replication of the database stored in the contextCSN
of the suffix entry?
If so, does that mean that with syncrepl, the above operation is
reduced to the following three steps?
1. Stop slapd on both consumers.
2. Netcat the database from one to the other.
3. start both consumers.
--
Nick Urbanik
Dear Folks,
1. Can I use the unique overlay with the dynamic cn=config
configuration?
2. If so, what is the LDIF syntax for the configuration?
3. Would this work with OpenLDAP 2.3.43?
--
Nick Urbanik http://nicku.org 808-71011 nick.urba...@optusnet.com.au
GPG: 7FFA CDC7 5A77 0558 DC7A 790A
Dear Folks,
It is nice that the tools convert from slapd.conf to the LDIF
configuration.
Is there a tool that converts the other way round? I could write one,
but I'd rather use an existing wheel if there is one.
--
Nick Urbanik http://nicku.org 808-71011 nick.urba...@optusnet.com.au
GPG: 7FFA
34 matches
Mail list logo