Re: [389-users] Problems setting up MMR
Will give that a try. Once I have it working I should be able to change my DNS to round robin between the 2 hosts and and point all the clients at that new name. Correct? Louis On Aug 22, 2013, at 4:21 PM, Morgan Jones wrote: > Modify an entry on the (a) master and see if the change propagates. > > The master will also complain vociferously in the error log if it can't send > updates to a consumer. > > -morgan > > > On Aug 22, 2013, at 4:12 PM, Louis Bohm wrote: > >> I added it with an ldapadd on host ldap02 and was able to initialize the >> consumer. >> >> So now that I have it working how do I test it and validate it? >> >> Louis >> On Aug 22, 2013, at 3:25 PM, Morgan Jones wrote: >> >>> Louis, >>> >>> Did you create cn=replication manager? It looks like you did not. >>> >>> Try this to see if it's there: >>> ldapsearch -H ldaps://ldap02 -D cn=directory\ manager -w pass -LLLb >>> "cn=replication manager,cn=config" objectclass=\* >>> >>> replace ldaps with ldap of course if you have not set up ssl. >>> >>> I believe it's in dse.ldif as well. >>> >>> -morgan >>> >>> >>> On Aug 22, 2013, at 3:17 PM, Louis Bohm wrote: >>> I have 2 servers running cents 6.4 and the newest version of DS from the repos. Both serves have the same supplier DN. On the second server (ldap02) I go no errors when setting up the replication agreement. However, on the first server (ldap01) I got "LDAP error: No such object. Error code: 32". The logs on ldap02 show this: [22/Aug/2013:15:14:17 -0400] conn=48 fd=71 slot=71 connection from 10.74.192.51 to 10.74.192.52 [22/Aug/2013:15:14:17 -0400] conn=48 op=0 BIND dn="cn=replication manager,cn=config" method=128 version=3 [22/Aug/2013:15:14:17 -0400] conn=48 op=0 RESULT err=32 tag=97 nentries=0 etime=0 [22/Aug/2013:15:14:17 -0400] conn=48 op=1 UNBIND [22/Aug/2013:15:14:17 -0400] conn=48 op=1 fd=71 closed - U1 I guess the first thing I need to do is prove that supplier DN is really there and is the same. But I have been unable to come up with an ldapsearch that shows it. Or is the only way to see it is to grep the dse.ldif file? Louis -- 389 users mailing list 389-users@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-users >>> >>> -- >>> 389 users mailing list >>> 389-users@lists.fedoraproject.org >>> https://admin.fedoraproject.org/mailman/listinfo/389-users >> >> -- >> 389 users mailing list >> 389-users@lists.fedoraproject.org >> https://admin.fedoraproject.org/mailman/listinfo/389-users > > -- > 389 users mailing list > 389-users@lists.fedoraproject.org > https://admin.fedoraproject.org/mailman/listinfo/389-users -- 389 users mailing list 389-users@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-users
Re: [389-users] Problems setting up MMR
I added it with an ldapadd on host ldap02 and was able to initialize the consumer. So now that I have it working how do I test it and validate it? Louis On Aug 22, 2013, at 3:25 PM, Morgan Jones wrote: > Louis, > > Did you create cn=replication manager? It looks like you did not. > > Try this to see if it's there: > ldapsearch -H ldaps://ldap02 -D cn=directory\ manager -w pass -LLLb > "cn=replication manager,cn=config" objectclass=\* > > replace ldaps with ldap of course if you have not set up ssl. > > I believe it's in dse.ldif as well. > > -morgan > > > On Aug 22, 2013, at 3:17 PM, Louis Bohm wrote: > >> I have 2 servers running cents 6.4 and the newest version of DS from the >> repos. Both serves have the same supplier DN. On the second server >> (ldap02) I go no errors when setting up the replication agreement. However, >> on the first server (ldap01) I got "LDAP error: No such object. Error code: >> 32". The logs on ldap02 show this: >> >> [22/Aug/2013:15:14:17 -0400] conn=48 fd=71 slot=71 connection from >> 10.74.192.51 to 10.74.192.52 >> [22/Aug/2013:15:14:17 -0400] conn=48 op=0 BIND dn="cn=replication >> manager,cn=config" method=128 version=3 >> [22/Aug/2013:15:14:17 -0400] conn=48 op=0 RESULT err=32 tag=97 nentries=0 >> etime=0 >> [22/Aug/2013:15:14:17 -0400] conn=48 op=1 UNBIND >> [22/Aug/2013:15:14:17 -0400] conn=48 op=1 fd=71 closed - U1 >> >> I guess the first thing I need to do is prove that supplier DN is really >> there and is the same. But I have been unable to come up with an ldapsearch >> that shows it. Or is the only way to see it is to grep the dse.ldif file? >> >> Louis >> >> -- >> 389 users mailing list >> 389-users@lists.fedoraproject.org >> https://admin.fedoraproject.org/mailman/listinfo/389-users > > -- > 389 users mailing list > 389-users@lists.fedoraproject.org > https://admin.fedoraproject.org/mailman/listinfo/389-users -- 389 users mailing list 389-users@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-users
Re: [389-users] Problems setting up MMR
So on ldap01 its there: [root@ldap02 ~]# ldapsearch -H ldap://ldap01 -D cn=directory\ manager -w -LLLb "cn=replication manager,cn=config" objectclass=\* dn: cn=replication manager,cn=config objectClass: inetorgperson objectClass: person objectClass: top objectClass: organizationalPerson cn:: cmVwbGljYXRpb24gbWFuYWdlciA= sn:: Uk0g userPassword:: YmJucnVsM3M= But on ldap02 its not. When I look at the dse.ldif file I do see it there. I have restarted ldap on the server a few times so I am not sure why its not pulling it in. Should I do an ldap add and then paste it in Louis On Aug 22, 2013, at 3:25 PM, Morgan Jones wrote: > Louis, > > Did you create cn=replication manager? It looks like you did not. > > Try this to see if it's there: > ldapsearch -H ldaps://ldap02 -D cn=directory\ manager -w pass -LLLb > "cn=replication manager,cn=config" objectclass=\* > > replace ldaps with ldap of course if you have not set up ssl. > > I believe it's in dse.ldif as well. > > -morgan > > > On Aug 22, 2013, at 3:17 PM, Louis Bohm wrote: > >> I have 2 servers running cents 6.4 and the newest version of DS from the >> repos. Both serves have the same supplier DN. On the second server >> (ldap02) I go no errors when setting up the replication agreement. However, >> on the first server (ldap01) I got "LDAP error: No such object. Error code: >> 32". The logs on ldap02 show this: >> >> [22/Aug/2013:15:14:17 -0400] conn=48 fd=71 slot=71 connection from >> 10.74.192.51 to 10.74.192.52 >> [22/Aug/2013:15:14:17 -0400] conn=48 op=0 BIND dn="cn=replication >> manager,cn=config" method=128 version=3 >> [22/Aug/2013:15:14:17 -0400] conn=48 op=0 RESULT err=32 tag=97 nentries=0 >> etime=0 >> [22/Aug/2013:15:14:17 -0400] conn=48 op=1 UNBIND >> [22/Aug/2013:15:14:17 -0400] conn=48 op=1 fd=71 closed - U1 >> >> I guess the first thing I need to do is prove that supplier DN is really >> there and is the same. But I have been unable to come up with an ldapsearch >> that shows it. Or is the only way to see it is to grep the dse.ldif file? >> >> Louis >> >> -- >> 389 users mailing list >> 389-users@lists.fedoraproject.org >> https://admin.fedoraproject.org/mailman/listinfo/389-users > > -- > 389 users mailing list > 389-users@lists.fedoraproject.org > https://admin.fedoraproject.org/mailman/listinfo/389-users -- 389 users mailing list 389-users@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-users
Re: [389-users] Problems setting up MMR
Louis, Did you create cn=replication manager? It looks like you did not. Try this to see if it's there: ldapsearch -H ldaps://ldap02 -D cn=directory\ manager -w pass -LLLb "cn=replication manager,cn=config" objectclass=\* replace ldaps with ldap of course if you have not set up ssl. I believe it's in dse.ldif as well. -morgan On Aug 22, 2013, at 3:17 PM, Louis Bohm wrote: > I have 2 servers running cents 6.4 and the newest version of DS from the > repos. Both serves have the same supplier DN. On the second server (ldap02) > I go no errors when setting up the replication agreement. However, on the > first server (ldap01) I got "LDAP error: No such object. Error code: 32". > The logs on ldap02 show this: > > [22/Aug/2013:15:14:17 -0400] conn=48 fd=71 slot=71 connection from > 10.74.192.51 to 10.74.192.52 > [22/Aug/2013:15:14:17 -0400] conn=48 op=0 BIND dn="cn=replication > manager,cn=config" method=128 version=3 > [22/Aug/2013:15:14:17 -0400] conn=48 op=0 RESULT err=32 tag=97 nentries=0 > etime=0 > [22/Aug/2013:15:14:17 -0400] conn=48 op=1 UNBIND > [22/Aug/2013:15:14:17 -0400] conn=48 op=1 fd=71 closed - U1 > > I guess the first thing I need to do is prove that supplier DN is really > there and is the same. But I have been unable to come up with an ldapsearch > that shows it. Or is the only way to see it is to grep the dse.ldif file? > > Louis > > -- > 389 users mailing list > 389-users@lists.fedoraproject.org > https://admin.fedoraproject.org/mailman/listinfo/389-users -- 389 users mailing list 389-users@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-users
[389-users] Problems setting up MMR
I have 2 servers running cents 6.4 and the newest version of DS from the repos. Both serves have the same supplier DN. On the second server (ldap02) I go no errors when setting up the replication agreement. However, on the first server (ldap01) I got "LDAP error: No such object. Error code: 32". The logs on ldap02 show this: [22/Aug/2013:15:14:17 -0400] conn=48 fd=71 slot=71 connection from 10.74.192.51 to 10.74.192.52 [22/Aug/2013:15:14:17 -0400] conn=48 op=0 BIND dn="cn=replication manager,cn=config" method=128 version=3 [22/Aug/2013:15:14:17 -0400] conn=48 op=0 RESULT err=32 tag=97 nentries=0 etime=0 [22/Aug/2013:15:14:17 -0400] conn=48 op=1 UNBIND [22/Aug/2013:15:14:17 -0400] conn=48 op=1 fd=71 closed - U1 I guess the first thing I need to do is prove that supplier DN is really there and is the same. But I have been unable to come up with an ldapsearch that shows it. Or is the only way to see it is to grep the dse.ldif file? Louis -- 389 users mailing list 389-users@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-users