RE: 2.4.28 cn=config replication trouble

2012-02-03 Thread Quanah Gibson-Mount
--On Friday, February 03, 2012 3:12 PM -0500 Aaron Bennett wrote: When animal is failing the slapd_client_connect for both dn's (one for cn=config, one for the directory data), I see zoot accept the connection and then zoot sees animal drop it, and then five seconds later it connects successfu

RE: 2.4.28 cn=config replication trouble

2012-02-03 Thread Aaron Bennett
>-Original Message- >From: Quanah Gibson-Mount [mailto:qua...@zimbra.com] >Sent: Thursday, February 02, 2012 5:03 PM >To: Aaron Bennett; openldap-technical@openldap.org >Subject: RE: 2.4.28 cn=config replication trouble > >Let me correct that. All binds use the ldap

RE: 2.4.28 cn=config replication trouble

2012-02-02 Thread Quanah Gibson-Mount
--On Thursday, February 02, 2012 1:02 PM -0800 Quanah Gibson-Mount wrote: --On Thursday, February 02, 2012 3:37 PM -0500 Aaron Bennett wrote: But I can make changes to one machine and see them go to the other, and the syncrepl lines are clearly not asking for sasl. All binds are SASL bind

RE: 2.4.28 cn=config replication trouble

2012-02-02 Thread Aaron Bennett
>-Original Message- >From: Quanah Gibson-Mount [mailto:qua...@zimbra.com] >Sent: Thursday, February 02, 2012 4:02 PM >To: Aaron Bennett; openldap-technical@openldap.org >Subject: RE: 2.4.28 cn=config replication trouble > >All binds are SASL binds. You're probabl

RE: 2.4.28 cn=config replication trouble

2012-02-02 Thread Quanah Gibson-Mount
--On Thursday, February 02, 2012 3:37 PM -0500 Aaron Bennett wrote: But I can make changes to one machine and see them go to the other, and the syncrepl lines are clearly not asking for sasl. All binds are SASL binds. You're probably using SASL SIMPLE, which most people don't think of as "

RE: 2.4.28 cn=config replication trouble

2012-02-02 Thread Aaron Bennett
on Bennett; openldap-technical@openldap.org Subject: RE: 2.4.28 cn=config replication trouble I'm sorry for wasting your time - this is working after all. From: openldap-technical-boun...@openldap.org<mailto:openldap-technical-boun...@openldap.org> [mailto:openldap-technical

RE: 2.4.28 cn=config replication trouble

2012-02-02 Thread Aaron Bennett
I'm sorry for wasting your time - this is working after all. From: openldap-technical-boun...@openldap.org [mailto:openldap-technical-boun...@openldap.org] On Behalf Of Aaron Bennett Sent: Thursday, February 02, 2012 2:20 PM To: openldap-technical@openldap.org Subject: 2.4.28 cn=c

Re: 2.4.28 cn=config replication trouble

2012-02-02 Thread Howard Chu
Aaron Bennett wrote: Hello, I’ve got two 2.4.28 boxes and I’m trying to get two-way multimaster replication set up – first for cn=config, and then for the entire tree. I can attach more of config.ldif if needed, but here are what I think are the relevant snippets: First thing that leaps out is

2.4.28 cn=config replication trouble

2012-02-02 Thread Aaron Bennett
Hello, I've got two 2.4.28 boxes and I'm trying to get two-way multimaster replication set up - first for cn=config, and then for the entire tree. I can attach more of config.ldif if needed, but here are what I think are the relevant snippets: First thing that leaps out is, of course, the cert