Hi, I am running 389-ds on CentOs 6.7. I am trying to move 389-ds off the disk that contains my root to a second disk that has space for the directory to grow. Can someone please advise on the correct way to move files and maintain selinux contexts. I moved the files using the method below, but logs cannot be written to - please see error message at the bottom of this email.
Setup CentOs 6.7 selinux= enforcing Second disk /mnt/ds389/data/ /mnt/389ds/log/ i used cp -rcp to copy and preserve SELINUX contexts and user rights 1. Stop dirsrv 2. cp -rcp /var/lib/dirsrv/ /mnt/ds389/data/ 3. Checked selinux context using ls -Z dirsrv output: drwxrwx---. nobody nobody unconfined_u:object_r:dirsrv_var_lib_t:s0 slapd-eu-vc-pmldap01 4. renamed /var/lib/dirsrv (keep original files under a different name) 5. Create symbolic link # ln -s /mnt/389ds/data/ dirsrv Logs 6. cp -rcp /var/log/dirsrv /mnt/389ds/log/ 7. Checked selinux context for /mnt/389ds/log drwx------. nobody nobody unconfined_u:object_r:dirsrv_var_log_t:s0 admin-serv drwxr-xr-x. nobody nobody unconfined_u:object_r:dirsrv_var_log_t:s0 slapd-eu-vc-pmldap01 8. Renamed /var/log/dirsrv t 9. Create symbolic link in /var/log ln -s /mtn/389ds/log/ dirsrv 10. Reboot server 11 $ sudo service dirsrv start Error: etc/dirsrv/slapd-xxxxxxxxx/dse.ldif: nsslapd-errorlog: Cannot open errorlog file "/var/log/dirsrv/slapd-xxxxxxxxxx/errors", errors cannot be logged. Exiting.... [15/Nov/2015:15:00:12 +0000] - WARNING: can't open file /var/log/dirsrv/slapd-xxxxxxxx/access. errno 13 (Permission denied)[15/Nov/2015:15:00:12 +0000] dse_read_one_file - The entry cn=config in file /etc/dirsrv/slapd-xxxxx/dse.ldif (lineno: 10) is invalid, error code 53 (Server is unwilling to perform) - Cannot open accesslog directory "/var/log/dirsrv/slapd-xxxxxxx/access", client accesses will not be logged.[15/Nov/2015:15:00:12 +0000] dse - Could not load config file [dse.ldif][15/Nov/2015:15:00:12 +0000] dse - Please edit the file to correct the reported problems and then restart the server. Kind regards
-- 389 users mailing list 389-users@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-users