<html>
<head>
<style>
.hmmessage P
{
margin:0px;
padding:0px
}
body.hmmessage
{
FONT-SIZE: 10pt;
FONT-FAMILY:Tahoma
}
</style>
</head>
<body class='hmmessage'>
> Rich Megginson wrote:<br>>> Mister Anonyme wrote:<br>>> Hi,<br>>> I tried to follow the guidelines here:<br>>> http://www.redhat.com/docs/manuals/dir-server/ag/8.0/Managing_Replication-Replicating-ADS-for-Failover.html<br>>> And it doesn't work.<br>><br>>Can you be more specific?<br><br>There you go...<br><br>SERVER1 is first server, SERVER2 is second server (failover)<br><br>========================================<br>First step (from the doc): Install and configure the first Directory Server instance.<br>========================================<br><br>******<br>file.inf<br>******<br>FullMachineName = SERVER1<br>AdminDomain = MY DOMAIN NAME<br>SuiteSpotUserID = nobody<br>SuiteSpotGroup = nobody<br>ConfigDirectoryLdapURL = ldap://SERVER1:389/o=NetscapeRoot<br>ConfigDirectoryAdminID = admin<br>ConfigDirectoryAdminPwd = MY PASSWORD<br><br><br>[admin]<br>ServerAdminID = admin<br>ServerAdminPwd = MY PASSWORD<br>SysUser = nobody<br>ServerIpAddress = MY SERVER IP ADDRESS<br>Port = 9830<br><br>[slapd]<br>InstallLdifFile = suggest<br>ServerIdentifier = SERVER1<br>ServerPort = 389<br>AddOrgEntries = Yes<br>RootDN = cn=Directory Manager<br>RootDNPwd = MY DS PASSWORD<br>SlapdConfigForMC = yes<br>Suffix = dc=EXAMPLE, dc=NET<br>UseExistingMC = 0<br>AddSampleEntries = Yes<br>ConfigFile = repluser.ldif<br>ConfigFile = changelog.ldif<br>ConfigFile = replica.ldif<br>ConfigFile = replagreement.ldif<br><br>***************<br>repluser.ldif<br>***************<br>dn: cn=replication manager,cn=config<br>objectClass: inetorgperson<br>objectClass: person<br>objectClass: top<br>cn: replication manager<br>sn: RM<br>userPassword: MY ENCRYPTED PASSWORD<br>passwordExpirationTime: 20380119031407Z<br><br>****************<br>changelog.ldif<br>****************<br>dn: cn=changelog5,cn=config<br>objectclass: top<br>objectclass: extensibleObject<br>cn: changelog5<br>nsslapd-changelogdir: /var/lib/dirsrv/slapd-MYINSTANCE/changelogdb<br><br><br>************<br>replica.ldif<br>*************<br>dn: cn=replica,cn="o=NetscapeRoot",cn=mapping tree,cn=config<br>objectclass: top<br>objectclass: nsds5replica<br>objectclass: extensibleObject<br>cn: replica<br>nsds5replicaroot: o=NetscapeRoot<br>nsds5replicaid: 1<br>nsds5replicatype: 3<br>nsds5flags: 1<br>nsds5ReplicaPurgeDelay: 604800<br>nsds5ReplicaBindDN: cn=replication manager,cn=config<br><br><br>******************<br>replagreement.ldif<br>******************<br>dn: cn=replication_netscaperoot,cn=replica,cn="o=Netscaperoot",cn=mapping <br>tree,cn=config<br>objectclass: top<br>objectclass: nsds5replicationagreement<br>cn: replication_netscaperoot<br>nsds5replicahost: SECONDARY LDAP SERVER HOSTNAME<br>nsds5replicaport: 389<br>nsds5ReplicaBindDN: cn=replication manager<br>nsds5replicabindmethod: SIMPLE<br>nsds5replicaroot: o=Netscaperoot<br>description: replication netscaperoot<br>nsds5replicacredentials: ENCRYPTEDPASSWORD<br>nsds5BeginReplicaRefresh: start<br><br>I run this command:<br><br><br># /usr/sbin/setup-ds-admin -s -f file.inf<br><br><br>Here's the log:<br>[...]<br>+Processing repluser.ldif ...<br>+++check_and_add_entry: Entry not found cn=replication manager,cn=config error No such object<br>+Entry cn=replication manager,cn=config is added<br><br>+Processing changelog.ldif ...<br>+++check_and_add_entry: Entry not found cn=changelog5,cn=config error No such object<br>+Entry cn=changelog5,cn=config is added<br><br>+Processing replica.ldif ...<br>+++check_and_add_entry: Entry not found cn=replica,cn="o=NetscapeRoot",cn=mapping tree,cn=config error No such object<br>+ERROR: adding an entry cn=replica,cn="o=NetscapeRoot",cn=mapping tree,cn=config failed, error: No such object<br>dn: cn=replica,cn="o=NetscapeRoot",cn=mapping tree,cn=config<br>objectclass: top<br>objectclass: nsds5replica<br>objectclass: extensibleObject<br>cn: replica<br>nsds5replicaroot: o=NetscapeRoot<br>nsds5replicaid: 1<br>nsds5replicatype: 3<br>nsds5flags: 1<br>nsds5replicapurgedelay: 604800<br>nsds5replicabinddn: cn=replication manager,cn=config<br><br>+ERROR: There was an error processing entry cn=replica,cn="o=NetscapeRoot",cn=mapping tree,cn=config<br>+Cannot continue processing entries.<br><br><br>So, I created another file (the documentation didn't mention this so I don't know if it's the 'good' procedure...):<br><br>*************<br>replica_1.ldif<br>*************<br>dn: cn="o=NetscapeRoot",cn=mapping tree,cn=config<br>objectclass: top<br>objectclass: nsMappingTree<br>objectclass: extensibleObject<br>cn: "o=NetscapeRoot"<br><br><br>I added just before the replica.ldif in the "file.inf", [slapd] section.<br><br>Then:<br><br># /usr/sbin/setup-ds-admin -s -f file.inf<br><br>It works well until...:<br>[...]<br>+[13/Aug/2008:15:07:17 -0400] NSMMReplicationPlugin - _replica_configure_ruv: replication broken for entry (o=NetscapeRoot); LDAP error - 1<br>+[13/Aug/2008:15:07:17 -0400] NSMMReplicationPlugin - Unable to configure replica o=NetscapeRoot:<br>+[13/Aug/2008:15:07:17 -0400] - slapd started. Listening on All Interfaces port 389 for LDAP requests<br>+Your new directory server has been started.<br>Your new DS instance 'INSTANCENAME' was successfully created.<br>Creating the configuration directory server . . .<br>The suffix 'o=NetscapeRoot' already exists. Config entry DN 'cn="o=NetscapeRoot",cn=mapping tree,cn=config'.<br><br>Failed to create the configuration directory server<br>Exiting . . .<br><br>So, it won't process LDIF files that I created according to the documentation, but if I force the creation of NetscapeRoot so the replica.ldif can be processed, it won't continue because it already exists...<br><br>Great... <br><br>I removed replica_1.ldif, replica.ldif, replagreement.ldif from file.inf and ran this agan:<br><br># /usr/sbin/setup-ds-admin -s -f file.inf<br><br>[...]<br>The admin server was successfully started.<br>Admin server was successfully created, configured, and started.<br><br>Then, I manually created a replica and a replica agreement:<br><br>/usr/lib/mozldap6/ldapmodify -cvD "cn=Directory manager" -w PASSWD < replica.ldif<br>/usr/lib/mozldap6/ldapmodify -cvD "cn=Directory manager" -w PASSWD < replagreement.ldif<br>
<br>It went with sucess.<br><br>Now, step 2 from the doc...<br><br>The inf file of the second server:<br><br>******<br>file.inf<br>******<br>[General]<br>AdminDomain = EXAMPLE.DOMAIN<br>SuiteSpotGroup = nobody<br>ConfigDirectoryLdapURL = ldap://SERVER1 (or SERVER2, doesn't matter, it fails).nl.rsft.net:389/o=NetscapeRoot<br>ConfigDirectoryAdminID = admin<br>FullMachineName = SERVER2<br>SuiteSpotUserID = nobody<br>ConfigDirectoryAdminPwd = PASS<br><br>[admin]<br>ServerAdminID = admin<br>ServerAdminPwd = PASS<br>SysUser = nobody<br>Port = 9830<br><br><br>[slapd]<br>InstallLdifFile = suggest<br>ServerIdentifier = SERVER2<br>ServerPort = 389<br>AddOrgEntries = Yes<br>RootDN = cn=Directory Manager<br>RootDNPwd = SERVER2<br>Suffix = dc=EXAMPLE,dc=DOMAIN<br>UseExistingMC = 0<br>AddSampleEntries = No<br>ConfigFile = netscaperootdb.ldif<br>ConfigFile = repluser.ldif<br>ConfigFile = changelog.ldif<br>ConfigFile = replica.ldif<br>ConfigFile = replagreement.ldif<br><br><br>I won't show repluser.ldif, changelog.ldif, replica.ldif and replagreement.ldif, they are same as above, except for netscapeootdb.ldif:<br><br>******************<br>netscaperootdb.ldif<br>******************<br>dn: cn="o=netscaperoot",cn=mapping tree,cn=config<br>objectclass: top<br>objectclass: extensibleObject<br>objectclass: nsMappingTree<br>nsslapd-state: backend<br>nsslapd-backend: NetscapeRoot<br>cn: o=NetscapeRoot<br><br><br>I ran the script:<br><br># /usr/sbin/setup-ds.pl -s -f file.inf<br><br>There's not error until...<br>[...]<br>+importing data ...<br>[13/Aug/2008:15:30:35 -0400] - dblayer_instance_start: pagesize: 4096, pages: 258922, procpages: 6198<br>[13/Aug/2008:15:30:35 -0400] - cache autosizing: import cache: 204800k<br>[13/Aug/2008:15:30:35 -0400] - li_import_cache_autosize: 50, import_pages: 51200, pagesize: 4096<br>[13/Aug/2008:15:30:35 -0400] - WARNING: Import is running with nsslapd-db-private-import-mem on; No other process is allowed to access the database<br>[13/Aug/2008:15:30:35 -0400] - dblayer_instance_start: pagesize: 4096, pages: 258922, procpages: 6198<br>[13/Aug/2008:15:30:35 -0400] - cache autosizing: import cache: 204800k<br>[13/Aug/2008:15:30:35 -0400] - li_import_cache_autosize: 50, import_pages: 51200, pagesize: 4096<br>[13/Aug/2008:15:30:36 -0400] - import userRoot: Beginning import job...<br>[13/Aug/2008:15:30:36 -0400] - import userRoot: Index buffering enabled with bucket size 100<br>[13/Aug/2008:15:30:36 -0400] - import userRoot: Processing file "/tmp/ldifBTMcP9.ldif"<br>[13/Aug/2008:15:30:36 -0400] - import userRoot: Finished scanning file "/tmp/ldifBTMcP9.ldif" (9 entries)<br>[13/Aug/2008:15:30:37 -0400] - import userRoot: Workers finished; cleaning up...<br>[13/Aug/2008:15:30:37 -0400] - import userRoot: Workers cleaned up.<br>[13/Aug/2008:15:30:37 -0400] - import userRoot: Cleaning up producer thread...<br>[13/Aug/2008:15:30:37 -0400] - import userRoot: Indexing complete. Post-processing...<br>[13/Aug/2008:15:30:37 -0400] - import userRoot: Flushing caches...<br>[13/Aug/2008:15:30:37 -0400] - import userRoot: Closing files...<br>[13/Aug/2008:15:30:37 -0400] - All database threads now stopped<br>[13/Aug/2008:15:30:37 -0400] - import userRoot: Import complete. Processed 9 entries in 1 seconds. (9.00 entries/sec)<br>+Starting the server: /usr/lib/dirsrv/slapd-myinstance/start-slapd<br>+Started the server: code 256<br>Server failed to start !!! Please check errors log for problems<br>+ Red Hat-Directory/8.0.0 B2007.353.1757<br>+ server2:389 (/etc/dirsrv/slapd-myinstance)<br>+<br>+[13/Aug/2008:15:30:35 -0400] - dblayer_instance_start: pagesize: 4096, pages: 258922, procpages: 6198<br>+[13/Aug/2008:15:30:35 -0400] - cache autosizing: import cache: 204800k<br>+[13/Aug/2008:15:30:35 -0400] - li_import_cache_autosize: 50, import_pages: 51200, pagesize: 4096<br>+[13/Aug/2008:15:30:35 -0400] - WARNING: Import is running with nsslapd-db-private-import-mem on; No other process is allowed to access the database<br>+[13/Aug/2008:15:30:35 -0400] - dblayer_instance_start: pagesize: 4096, pages: 258922, procpages: 6198<br>+[13/Aug/2008:15:30:35 -0400] - cache autosizing: import cache: 204800k<br>+[13/Aug/2008:15:30:35 -0400] - li_import_cache_autosize: 50, import_pages: 51200, pagesize: 4096<br>+[13/Aug/2008:15:30:36 -0400] - import userRoot: Beginning import job...<br>+[13/Aug/2008:15:30:36 -0400] - import userRoot: Index buffering enabled with bucket size 100<br>+[13/Aug/2008:15:30:36 -0400] - import userRoot: Processing file "/tmp/ldifBTMcP9.ldif"<br>+[13/Aug/2008:15:30:36 -0400] - import userRoot: Finished scanning file "/tmp/ldifBTMcP9.ldif" (9 entries)<br>+[13/Aug/2008:15:30:37 -0400] - import userRoot: Workers finished; cleaning up...<br>+[13/Aug/2008:15:30:37 -0400] - import userRoot: Workers cleaned up.<br>+[13/Aug/2008:15:30:37 -0400] - import userRoot: Cleaning up producer thread...<br>+[13/Aug/2008:15:30:37 -0400] - import userRoot: Indexing complete. Post-processing...<br>+[13/Aug/2008:15:30:37 -0400] - import userRoot: Flushing caches...<br>+[13/Aug/2008:15:30:37 -0400] - import userRoot: Closing files...<br>+[13/Aug/2008:15:30:37 -0400] - All database threads now stopped<br>+[13/Aug/2008:15:30:37 -0400] - import userRoot: Import complete. Processed 9 entries in 1 seconds. (9.00 entries/sec)<br>+[13/Aug/2008:15starting up<br>+[13/Aug/2008:15:30:39 -0400] - I'm resizing my cache now...cache was 209715200 and is now 8000000<br>+[13/Aug/2008:15:30:39 -0400] - Warning: Mapping tree node entry for o=NetscapeRoot point to an unknown backend : NetscapeRoot<br>+[13/Aug/2008:15:30:40 -0400] - Warning: Mapping tree node entry for o=NetscapeRoot point to an unknown backend : NetscapeRoot<br>+[13/Aug/2008:15:30:40 -0400] - Warning: Mapping tree node entry for o=NetscapeRoot point to an unknown backend : NetscapeRoot<br>+[13/Aug/2008:15:30:40 -0400] - Warning: Mapping tree node entry for o=NetscapeRoot point to an unknown backend : NetscapeRoot<br>+[13/Aug/2008:15:30:40 -0400] - Warning: Mapping tree node entry for o=NetscapeRoot point to an unknown backend : NetscapeRoot<br>+[13/Aug/2008:15:30:40 -0400] - Warning: Mapping tree node entry for o=NetscapeRoot point to an unknown backend : NetscapeRoot<br><br><br>And it hung up. I had to do CTRL-C to have prompt. Well, maybe it's normal.. This server isn't completely installed.<br><br>So, step 3 from the doc, I ran it on the SERVER1: <br><br># /usr/lib/mozldap6/ldapmodify -cvD "cn=Directory manager" -w PASSWD<br>ldapmodify-bin: started Wed Aug 13 15:37:03 2008<br><br>ldap_init( localhost, 389 )<br>dn: cn=ExampleAgreement1,cn=replica,cn="o=NetscapeRoot",cn=mapping tree,cn=config<br>changetype: modify<br>replace: nsds5beginreplicarefresh<br>nsds5beginreplicarefresh: start<br>replace nsds5beginreplicarefresh:<br> start<br>modifying entry cn=ExampleAgreement1,cn=replica,cn="o=NetscapeRoot",cn=mapping tree,cn=config<br>ldap_modify: No such object<br><br>This is when I gave up and decided to create a NetscapeRoot's replication directly from the Java console. I mean, I installed two LDAP servers with the second server that it uses the Configuration Server from the first server. <br><br>The replication works very well between two servers (only if I setup from the Java console) but when I want to do the the step 4 from the doc (create local Administration Server), it doesn't work, the script 'register-ds-admin.pl' always fails.<br><br>Thank you very much for your help!<br><br /><hr /> <a href='' target='_new'></a></body>
</html>