potentially nscd(network services caching daemon). It runs on the client.
In authconfig-tui you can disable caching by unchecking the box. On the
system level you can run service nscd stop.
On Fri, May 15, 2015 at 2:36 PM, Ghiurea, Isabella <
isabella.ghiu...@nrc-cnrc.gc.ca> wrote:
> HI LIst,
>
>
Hey Mark,
During version checking for you I realized that I was actually executing
this to the wrong server. The object not found was actually correct.
oops :P
On Fri, Jan 30, 2015 at 3:08 PM, Mark Reynolds wrote:
>
> On 01/30/2015 02:43 PM, Justin Edmands wrote:
>
> 389 List,
389 List,
I need to modify the replication schedule via LDIF import. I have no issues
doing it in the 389-console.
I am attempting to import this ldif (with dc changes to mask our info)
dn: cn=dirsrv1 to devdirsrv1,cn=replica,cn=dc\3Dourdomain\2Cdc\3Dcom,cn=map
ping tree,cn=config
changetype: mod
http://directory.fedoraproject.org/wiki/Howto:WalkthroughMultimasterSSL#Configure_Multi-Master_Replication_Agreements
On Mon, Aug 18, 2014 at 6:14 PM, Justin Edmands wrote:
> Forgive me if you have this already configured...In my setup the
> supplier has to sending on 389 and consumer has
Forgive me if you have this already configured...In my setup the
supplier has to sending on 389 and consumer has to be receiving on
636. It's somewhere in the docs I believe.
On Mon, Aug 18, 2014 at 6:03 PM, Noriko Hosoi wrote:
> You mentioned hosts test-ds1 and test-ds2. What is test-ds3? Is i
You can use a few different methods on top of multi-master.
HAproxy server (or other load balancer). This service listens for
requests on 389/636 and forwards to the current running server
Multiple records in DNS. see below
Split Horizon DNS. google that one
Although some would advise against it,
You're best bet is the RH423 course.
http://www.redhat.com/training/courses/rh423/
On Mon, Jul 14, 2014 at 5:49 PM, Isabella Ghiurea
wrote:
> Hi LDAP Users.
> I'm new to LDAP world, I'm coming from a DBA background and looking for
> advise in getting some very decent good quality LDAP /389DS o
u deleting all replication agreements from A B and C before starting to
work with A --> C again?
--
Justin Edmands
> On May 4, 2014, at 9:16 AM, Graham Leggett wrote:
>
> Hi all,
>
> I am into my second day of hell trying to get server C to replicate to
> servers B and A in
>
> I am having an issue with securing Directory Server communication using
> SSL which I need guidance on how to solve. I am setting up a master and
> slave which will use SSL to secure communication between the two servers
> and to all other clients.
>
>
>
> I used openssl to create a CA cert an
It would be training for red hat directory services.
> On Apr 14, 2014, at 4:52 PM, "Elizabeth Jones" wrote:
>
> Does anyone know of any 389 training that they could recommend? My
> manager has decided that he wants me to have "ldap training", but I am not
> aware of anything for 389 DS other
I will second the motion of forwarding to documentation here. It appears
you have a lot of the same questions that I had when setting up my
environment. It will all come to fruition after stepping through it slowly.
This is not something to piece together if being used for your production
environme
On Thu, Mar 6, 2014 at 12:19 PM, Chaudhari, Rohit K. <
rohit.chaudh...@jhuapl.edu> wrote:
> Hi All,
>
> I am trying to create multi-master replication in 389. But I am having
> trouble using ldapmodify to create a replication manager DN account
>
> I get the following error:
>
> Additional info:
just to think outside of what you have already mentioned:
client nscd service running?
User authconfig to show if you have caching and local authorization
settings:
authconfig-tui
change things on a test client and then tail the
/var/log/slapd//access (and other) logs while grepping for the
use
> (609)485-4218
> harry.dev...@faa.gov
>
>
> From: Justin Edmands
> To: "General discussion list for the 389 Directory server project." <
> 389-users@lists.fedoraproject.org> Date: 10/22/2013 10:22 AM Subject: Re:
> [389-users] (no subject) Sent by:
> 389-
On Tue, Oct 22, 2013 at 9:51 AM, wrote:
>
> We have been working this problem for two weeks debugging. We have 389-ds
> running and multi-master with 3 RHEL6 servers and a RHEL5. The RHEL5 ldap
> clients authenticate correctly to the RHEL6 389-ds directory server and
> with 'id' command can see a
On Tue, Oct 1, 2013 at 8:19 AM, Ric <389-users-l...@vorticity.org> wrote:
> Hello All,
>
> I hope you can forgive a request which I am sure doesn't have enough
> information in it, please let me know what else I can add if you might
> be able to help.
>
> I have a problem with our installation of
On Thu, Aug 22, 2013 at 10:49 AM, Louis Bohm wrote:
> Following the directions for setting up a supplier dn for replication I
> created a file with the following:
>
> [root@ldap01 slapd-ldap01]# cat /root/supplier.ldif
> dn: cn=replication manager,cn=config
> objectClass: inetorgperson
> objectCl
On Aug 12, 2013, at 2:26 PM, Morgan Jones wrote:
>
>
> I have a client running CentOS directory 8.2.8, CentOS 5. We have a two
> multi-masters with two read-only replicas.
>
> We enabled the memberof plugin and it shows group memberships unreliably at
> best. Is this a known issue or I
Hey,
Certainly new to migrations of LDAP. I migrated our old setup from OpenLDAP
to 389 Directory Server. When using the "id" command on an LDAP client, it
only returns uid,gid, and one group. It for some reason does not show all
of the actual groups that the user is associated with. What is set to
Hey,
I changed my cn=Directory Manager account to just be cn=Manager. This works
and all, but I need to replicate something similar to our older openldap
setup.
I would like to have cn=Manager,dc=somewebsite,dc=com to allow our older
website code to continue operating without modifications.
Can I
I am trying to create a SAN cert in order to cover both of my Master LDAPS
servers.
I was hoping to have the following:
hqdirsrv1\
> hqdirsrv
hqdirsrv2/
This will allow some of the older code to reference a single LDAP/S server
and not completely rely one instance.
- Creating a n
21 matches
Mail list logo