My Favorites

Close

Please to see your favorites.

  • Bookmark
  • Email Document
  • Printer Friendly
  • Favorite
  • Rating:

OpenLDAP stops to synchronize replica

This document (7000106) is provided subject to the disclaimer at the end of this document.

Environment

Novell SUSE Linux Enterprise Server 10

Situation

The daemon slurpd stops to synchronize without any reason
An network trace shows that slurpd is not synchronizing openldap database.

Resolution

1. Edit /etc/openldap/slapd.conf on master server:
  • Put index parameters information before replica parameters
  • Put all the replica parameters in the same line
The file slapd.conf will looks like the following example:
include /etc/openldap/schema/core.schema
include /etc/openldap/schema/cosine.schema
include /etc/openldap/schema/inetorgperson.schema
include /etc/openldap/schema/rfc2307bis.schema
include /etc/openldap/schema/yast.schema
include /etc/openldap/schema/samba3.schema
include /etc/openldap/schema/dnszone.schema
pidfile /var/run/slapd/slapd.pid
argsfile /var/run/slapd/slapd.args
modulepath /usr/lib/openldap/modules
access to attrs=SambaLMPassword,SambaNTPassword
by dn="cn=Administrator,dc=xxxx,dc=com,dc=br" write
by * none
access to *
by * read
access to attrs=userPassword,sambaLMPassword,sambaNTPassword
by self write
by anonymous auth
by * none
loglevel 0
allow bind_v2
database bdb
suffix "dc=xxxx,dc=com"
checkpoint 1024 5
cachesize 10000
rootdn "cn=Administrator,dc=xxxx,dc=com"
rootpw "{ssha}Zfk4dVXkE0CHI9sVGlek00PgmbdMTUhLRA=="
directory /var/lib/ldap
password-hash {CRYPT}
password-crypt-salt-format "$1$.8s"
index objectClass,uidNumber,gidNumber eq
index cn,sn,uid,displayName pres,sub,eq
index sambaSID,sambaPrimaryGroupSID,sambaDomainName eq
index default sub
replogfile /var/lib/ldap/repldap.log
replica uri=ldap://192.168.1.1:389 binddn="cn=Administrator,dc=xxxx,dc=com" bindmethod=simple credentials=novell
2. Stop ldap daemons running on all the servers (master and slaves replicas):
rcldap stop
rcslurpd stop
3. Delete the replog (replication) files on master server:
rm -rf /var/lib/slurpd/replica/*.replog
4. Resynchronize openldap database from the master server to the slave servers:
scp /var/lib/ldap/* root@:/var/lib/ldap/
5. Change database files ownership to slapd user in all slave servers:
chown -R ldap.ldap /var/lib/ldap
6. Restart the slapd daemon on master server:
rcldap start
7. Restart slapd daemons on slave servers:
rcldap start
8. Restart slurpd daemon on master server:
rcslurpd start

Additional Information

Tips to troubleshoot the issue:

1. Loading slurpd in debug mode:
# slurpd -f /etc/openldap/slapd.conf -d 65535
2. Getting an strace about what the process is doing:
# strace -F -o /tmp/slurpd_strace.txt -p
3. Getting a trace about network activity:
# tcpdump -i any -s 0 -w port 389

Disclaimer

This Support Knowledgebase provides a valuable tool for NetIQ/Novell/SUSE customers and parties interested in our products and solutions to acquire information, ideas and learn from one another. Materials are provided for informational, personal or non-commercial use within your organization and are presented "AS IS" WITHOUT WARRANTY OF ANY KIND.

  • Document ID:7000106
  • Creation Date:16-APR-08
  • Modified Date:30-APR-12
    • SUSESUSE Linux Enterprise Server

Did this document solve your problem? Provide Feedback

< Back to Support Search

SUSE Support Forums

Get your questions answered by experienced Sys Ops or interact with other SUSE community experts.

Join Our Community

Support Resources

Learn how to get the most from the technical support you receive with your SUSE Subscription, Premium Support, Academic Program, or Partner Program.


SUSE Customer Support Quick Reference Guide SUSE Technical Support Handbook Update Advisories
Support FAQ

Open an Incident

Open an incident with SUSE Technical Support, manage your subscriptions, download patches, or manage user access.

Go to Customer Center