The FQDN look the fine to me. I tried to be very careful about this pitfall.<br><br>NEW server:<br># hostname --fqdn<br>ldap.mcs.local<br><br>OLD server:<br>#hostname --fqdn<br>ldap.mcs.local<br><br><div class="gmail_quote">
On Mon, Mar 15, 2010 at 12:38 PM, Rich Megginson <span dir="ltr"><<a href="mailto:rmeggins@redhat.com">rmeggins@redhat.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
<div class="im">Brian Provenzano wrote:<br>
> Exist in the destination you mean?<br>
</div>If it was migrated at all, yes.<br>
<div class="im">> or in the source on the original FDS 1.0.4 server?<br>
</div>Yes, if the migration did not get to that point yet.<br>
<div class="im">><br>
> This is a fresh install of 389 for the migration and I have not run<br>
> setup (per migration docs), so I assume it does not exist yet? Should it?<br>
</div>It depends on how far migration got before it failed.<br>
<div class="im">> Should I run setup first to create and then run migrate? I did not<br>
> do this since the docs state not to.<br>
</div>Right.<br>
<div class="im">><br>
> This is what I did to get to this point (not sure if this helps in<br>
> case I missed a step):<br>
><br>
> Old CentOS 4.3 server with FDS 1.0.4 :<br>
> ------------------------------------<br>
> -Stop ldap server (admin and server processes) using the init scripts<br>
><br>
> -Create the LDIF files to dump the databases to LDIF: cd<br>
> /opt/fedora-ds/slapd-ldap<br>
> ./db2ldif -n userRoot -a /opt/fedora-ds/slapd-ldap/db/userRoot.ldif<br>
> ./db2ldif -n NetscapeRoot -a<br>
> /opt/fedora-ds/slapd-ldap/db/NetscapeRoot.ldif<br>
><br>
> -tar up the directory: tar -cpvf fedora-ds.tar fedora-ds<br>
><br>
> -move the tar file to the /tmp dir of the new destination server<br>
> CentOS 5.4 (389 server already installed via 'yum install 389-ds' per<br>
> the docs using EPEL. This installed fine.). Per the docs here (<br>
> <a href="http://www.redhat.com/docs/manuals/dir-server/8.1/install/Installation_Guide-Migration_Procedure.html" target="_blank">http://www.redhat.com/docs/manuals/dir-server/8.1/install/Installation_Guide-Migration_Procedure.html</a><br>
</div>> ) I did not run the <a href="http://setup-ds-admin.pl" target="_blank">setup-ds-admin.pl</a> <<a href="http://setup-ds-admin.pl" target="_blank">http://setup-ds-admin.pl</a>> due<br>
<div class="im">> to the warning note in the migration docs.<br>
><br>
> -extract the tar to /tmp on the new server (tar -xpvf fedora.tar)<br>
><br>
> -remove the 10presense.ldif file (per our other conversation regarding<br>
> my other issue - conflict with source ldif).<br>
><br>
> -run the migration script as follows: ./<a href="http://migrate-ds-admin.pl" target="_blank">migrate-ds-admin.pl</a><br>
</div><div class="im">> <<a href="http://migrate-ds-admin.pl" target="_blank">http://migrate-ds-admin.pl</a>> --oldsroot /tmp/fedora-ds --actualsroot<br>
> /opt/fedora-ds General.ConfigDirectoryAdminPwd='mypassword'<br>
</div>What is the FQDN of the old machine you are migrating from? Is it<br>
exactly the same as the new FQDN?<br>
<div class="im">><br>
><br>
><br>
><br>
> On Mon, Mar 15, 2010 at 11:26 AM, Rich Megginson <<a href="mailto:rmeggins@redhat.com">rmeggins@redhat.com</a><br>
</div><div><div></div><div class="h5">> <mailto:<a href="mailto:rmeggins@redhat.com">rmeggins@redhat.com</a>>> wrote:<br>
><br>
> Brian Provenzano wrote:<br>
> > Thanks for the tip. I have the following in my<br>
> > /var/log/dirsrv/slapd-ldap/access log:<br>
> ><br>
> > [15/Mar/2010:10:42:44 -0600] conn=1 fd=64 slot=64 connection from<br>
> > 192.168.1.20 to 192.168.1.20<br>
> > [15/Mar/2010:10:42:44 -0600] conn=1 op=0 BIND dn="" method=128<br>
> version=3<br>
> > [15/Mar/2010:10:42:44 -0600] conn=1 op=0 RESULT err=0 tag=97<br>
> > nentries=0 etime=0 dn=""<br>
> > [15/Mar/2010:10:42:44 -0600] conn=1 op=1 SRCH base="o=NetscapeRoot"<br>
> > scope=2 filter="(uid=admin)" attrs="dn"<br>
> > [15/Mar/2010:10:42:44 -0600] conn=1 op=1 RESULT err=0 tag=101<br>
> > nentries=1 etime=0<br>
> > [15/Mar/2010:10:42:44 -0600] conn=1 op=2 BIND dn="uid=admin,<br>
> > ou=Administrators, ou=TopologyManagement, o=NetscapeRoot" method<br>
> > =128 version=3<br>
> > [15/Mar/2010:10:42:44 -0600] conn=1 op=2 RESULT err=0 tag=97<br>
> > nentries=0 etime=0 dn="uid=admin,ou=administrators,ou=topologyma<br>
> > nagement,o=netscaperoot"<br>
> > [15/Mar/2010:10:42:44 -0600] conn=1 op=3 SRCH base="cn=389<br>
> > Administration Server, cn=Server Group, cn=ldap.mcs.local, ou=mcs.<br>
> > local, o=NetscapeRoot" scope=0 filter="(objectClass=*)" attrs="*<br>
> aci aci"<br>
> > [15/Mar/2010:10:42:44 -0600] conn=1 op=3 RESULT err=32 tag=101<br>
> > nentries=0 etime=0<br>
> Does the entry o=NetscapeRoot exist?<br>
> Does ou=mcs.local, o=NetscapeRoot exist?<br>
> Does cn=ldap.mcs.local, ou=mcs.local, o=NetscapeRoot exist?<br>
> > [15/Mar/2010:10:42:44 -0600] conn=1 op=4 SRCH<br>
> > base="cn=admin-serv-ldap, cn=389 Administration Server, cn=Server<br>
> > Group, cn=lda<br>
> > p.mcs.local, ou=mcs.local, o=NetscapeRoot" scope=0<br>
> > filter="(objectClass=*)" attrs="* aci aci"<br>
> > [15/Mar/2010:10:42:44 -0600] conn=1 op=4 RESULT err=32 tag=101<br>
> > nentries=0 etime=0<br>
> > [15/Mar/2010:10:42:44 -0600] conn=1 op=5 SRCH<br>
> base="cn=configuration,<br>
> > cn=admin-serv-ldap, cn=389 Administration Server, cn=Se<br>
> > rver Group, cn=ldap.mcs.local, ou=mcs.local, o=NetscapeRoot" scope=0<br>
> > filter="(objectClass=*)" attrs="* aci aci"<br>
> > [15/Mar/2010:10:42:44 -0600] conn=1 op=5 RESULT err=32 tag=101<br>
> > nentries=0 etime=0<br>
> > [15/Mar/2010:10:42:44 -0600] conn=1 op=6 SRCH base="cn=encryption,<br>
> > cn=configuration, cn=admin-serv-ldap, cn=389 Administratio<br>
> > n Server, cn=Server Group, cn=ldap.mcs.local, ou=mcs.local,<br>
> > o=NetscapeRoot" scope=0 filter="(objectClass=*)" attrs="* aci aci<br>
> > "<br>
> > [15/Mar/2010:10:42:44 -0600] conn=1 op=6 RESULT err=32 tag=101<br>
> > nentries=0 etime=0<br>
> > [15/Mar/2010:10:42:44 -0600] conn=1 op=7 SRCH base="cn=Tasks,<br>
> > cn=admin-serv-ldap, cn=389 Administration Server, cn=Server Gro<br>
> > up, cn=ldap.mcs.local, ou=mcs.local, o=NetscapeRoot" scope=0<br>
> > filter="(objectClass=*)" attrs="* aci aci"<br>
> > [15/Mar/2010:10:42:44 -0600] conn=1 op=7 RESULT err=32 tag=101<br>
> > nentries=0 etime=0<br>
> > [15/Mar/2010:10:42:44 -0600] conn=1 op=8 ADD dn="cn=Tasks,<br>
> > cn=admin-serv-ldap, cn=389 Administration Server, cn=Server Group,<br>
> > cn=ldap.mcs.local, ou=mcs.local, o=NetscapeRoot"<br>
> > [15/Mar/2010:10:42:44 -0600] conn=1 op=8 RESULT err=32 tag=105<br>
> > nentries=0 etime=0<br>
> > [15/Mar/2010:10:42:44 -0600] conn=1 op=9 UNBIND<br>
> > [15/Mar/2010:10:42:44 -0600] conn=1 op=9 fd=64 closed - U1<br>
> ><br>
> ><br>
> > The "ADD" specified in the migration log is the same one here that<br>
> > appears to fail (I guess). Sorry for my ignorance, but I have<br>
> no idea<br>
> > how to resolve this.<br>
> ><br>
> ><br>
> ><br>
> > On Mon, Mar 15, 2010 at 9:30 AM, Rich Megginson<br>
> <<a href="mailto:rmeggins@redhat.com">rmeggins@redhat.com</a> <mailto:<a href="mailto:rmeggins@redhat.com">rmeggins@redhat.com</a>><br>
</div></div><div><div></div><div class="h5">> > <mailto:<a href="mailto:rmeggins@redhat.com">rmeggins@redhat.com</a> <mailto:<a href="mailto:rmeggins@redhat.com">rmeggins@redhat.com</a>>>> wrote:<br>
> ><br>
> > Brian Provenzano wrote:<br>
> > > I'm still on the road to trying to migrate from FDS 1.0.4<br>
> to 389 DS<br>
> > > 1.2.5. Thanks to Rich's help yesterday in a previous<br>
> thread (Cross<br>
> > > Migration Problem From FDS 1.0.x to 386 Directory Server)<br>
> I was able<br>
> > > to fix an import issue with an existing ldif schema<br>
> (presense.ldif).<br>
> > ><br>
> > > Anyway, I am now running to the following issue when the<br>
> migration<br>
> > > script tries to read/migrate my data from LDIF ( I have a<br>
> > > userRoot.ldif and NetscapeRoot.ldif). I assume it is the<br>
> > > NetscapeRoot.ldif that is the issue:<br>
> > ><br>
> > ><br>
> > > # ./<a href="http://migrate-ds-admin.pl" target="_blank">migrate-ds-admin.pl</a> <<a href="http://migrate-ds-admin.pl" target="_blank">http://migrate-ds-admin.pl</a>><br>
> <<a href="http://migrate-ds-admin.pl" target="_blank">http://migrate-ds-admin.pl</a>><br>
> > <<a href="http://migrate-ds-admin.pl" target="_blank">http://migrate-ds-admin.pl</a>> --oldsroot<br>
> > > /tmp/fedora-ds --actualsroot /opt/fedora-ds<br>
> > > General.ConfigDirectoryAdminPwd='mypassword'<br>
> > > Beginning migration of Directory and Administration<br>
> servers from<br>
> > > /tmp/fedora-ds . . .<br>
> > > Beginning migration of directory server instances in<br>
> > /tmp/fedora-ds . . .<br>
> > > Your new DS instance 'slapd-ldap' was successfully created.<br>
> > > Beginning migration of Administration server from<br>
> /tmp/fedora-ds<br>
> > . . .<br>
> > > Creating Admin Server files and directories . . .<br>
> > > dn: cn=Tasks, cn=admin-serv-ldap, cn=389 Administration<br>
> Server,<br>
> > > cn=Server Grou<br>
> > > p, cn=ldap.mcs.local, ou=mcs.local, o=NetscapeRoot<br>
> > > objectclass: top<br>
> > > objectclass: nsResourceRef<br>
> > > cn: Tasks<br>
> > > Error adding entry 'cn=Tasks, cn=admin-serv-ldap, cn=389<br>
> > > Administration Server, cn=Server Group, cn=ldap.mcs.local,<br>
> > > ou=mcs.local, o=NetscapeRoot'. Error: No such object<br>
> > > Exiting . . .<br>
> > > Log file is '/tmp/migrate5naZZB.log'<br>
> > ><br>
> > ><br>
> > > Here is the /tmp/migrate5naZZB.log' log file:<br>
> > > ---------------------<br>
> > > [10/03/12:10:58:57] - [Migration] Info Beginning migration of<br>
> > > Directory and Administration servers from /tmp/fedora-ds . . .<br>
> > > [10/03/12:10:58:57] - [Migration] Info Beginning migration of<br>
> > > directory server instances in /tmp/fedora-ds . . .<br>
> > > [10/03/12:10:59:00] - [Migration] Info Your new DS instance<br>
> > > 'slapd-ldap' was successfully created.<br>
> > > [10/03/12:10:59:13] - [Migration] Info Copying<br>
> > > /tmp/fedora-ds/alias/slapd-ldap-cert8.db to<br>
> > > /etc/dirsrv/slapd-ldap/cert8.db<br>
> > > [10/03/12:10:59:13] - [Migration] Info Copying<br>
> > > /tmp/fedora-ds/alias/slapd-ldap-key3.db to<br>
> > /etc/dirsrv/slapd-ldap/key3.db<br>
> > > [10/03/12:10:59:13] - [Migration] Info Copying<br>
> > > /tmp/fedora-ds/alias/secmod.db to<br>
> /etc/dirsrv/slapd-ldap/secmod.db<br>
> > > [10/03/12:10:59:13] - [Migration] Info No<br>
> > > /tmp/fedora-ds/alias/slapd-ldap-pin.txt to migrate<br>
> > > [10/03/12:10:59:13] - [Migration] Info Copying<br>
> > > /tmp/fedora-ds/shared/config/certmap.conf to<br>
> > > /etc/dirsrv/slapd-ldap/<a href="http://certmap.co" target="_blank">certmap.co</a> <<a href="http://certmap.co" target="_blank">http://certmap.co</a>><br>
> <<a href="http://certmap.co" target="_blank">http://certmap.co</a>><br>
> > <<a href="http://certmap.co" target="_blank">http://certmap.co</a>><br>
> > > nf<br>
> > > [10/03/12:10:59:14] - [Migration] Info Beginning migration of<br>
> > > Administration server from /tmp/fedora-ds . . .<br>
> > > [10/03/12:10:59:15] - [Migration] Info Creating Admin Server<br>
> > files and<br>
> > > directories . . .<br>
> > > [10/03/12:10:59:15] - [Migration] Debug No file to migrate:<br>
> > > /tmp/fedora-ds/alias/admin-serv-ldap-cert8.db<br>
> > > [10/03/12:10:59:15] - [Migration] Debug No file to migrate:<br>
> > > /tmp/fedora-ds/alias/admin-serv-ldap-key3.db<br>
> > > [10/03/12:10:59:15] - [Migration] Info Copying<br>
> > > /tmp/fedora-ds/alias/secmod.db to<br>
> /etc/dirsrv/admin-serv/secmod.db<br>
> > > [10/03/12:10:59:15] - [Migration] Info No<br>
> > > /tmp/fedora-ds/alias/admin-serv-ldap-pin.txt to migrate<br>
> > > [10/03/12:10:59:15] - [Migration] Info Copying<br>
> > > /tmp/fedora-ds/shared/config/certmap.conf to<br>
> > > /etc/dirsrv/admin-serv/<a href="http://certmap.co" target="_blank">certmap.co</a> <<a href="http://certmap.co" target="_blank">http://certmap.co</a>><br>
> <<a href="http://certmap.co" target="_blank">http://certmap.co</a>><br>
> > <<a href="http://certmap.co" target="_blank">http://certmap.co</a>><br>
> > > nf<br>
> > > [10/03/12:10:59:15] - [Migration] Info Error adding entry<br>
> 'cn=Tasks,<br>
> > > cn=admin-serv-ldap, cn=389 Administration Server, cn=Ser<br>
> > > ver Group, cn=ldap.mcs.local, ou=mcs.local,<br>
> o=NetscapeRoot'. Error:<br>
> > > No such object<br>
> > Look in the access log of your configuration directory server -<br>
> > look for<br>
> > err=32 along with a DN that looks like the above. For an ADD<br>
> > operation,<br>
> > you get err=32 (No such object) when the parent of the entry<br>
> you are<br>
> > attempting to add cannot be found.<br>
> > > [10/03/12:10:59:15] - [Migration] Fatal Exiting . . .<br>
> > > Log file is '/tmp/migrate5naZZB.log'<br>
> > ><br>
> > ><br>
> > > Thanks,<br>
> > > Brian<br>
> > ><br>
> > ><br>
> ><br>
> ------------------------------------------------------------------------<br>
> > ><br>
> > > --<br>
> > > 389 users mailing list<br>
> > > <a href="mailto:389-users@lists.fedoraproject.org">389-users@lists.fedoraproject.org</a><br>
> <mailto:<a href="mailto:389-users@lists.fedoraproject.org">389-users@lists.fedoraproject.org</a>><br>
> > <mailto:<a href="mailto:389-users@lists.fedoraproject.org">389-users@lists.fedoraproject.org</a><br>
> <mailto:<a href="mailto:389-users@lists.fedoraproject.org">389-users@lists.fedoraproject.org</a>>><br>
> > > <a href="https://admin.fedoraproject.org/mailman/listinfo/389-users" target="_blank">https://admin.fedoraproject.org/mailman/listinfo/389-users</a><br>
> ><br>
> > --<br>
> > 389 users mailing list<br>
> > <a href="mailto:389-users@lists.fedoraproject.org">389-users@lists.fedoraproject.org</a><br>
> <mailto:<a href="mailto:389-users@lists.fedoraproject.org">389-users@lists.fedoraproject.org</a>><br>
> > <mailto:<a href="mailto:389-users@lists.fedoraproject.org">389-users@lists.fedoraproject.org</a><br>
> <mailto:<a href="mailto:389-users@lists.fedoraproject.org">389-users@lists.fedoraproject.org</a>>><br>
> > <a href="https://admin.fedoraproject.org/mailman/listinfo/389-users" target="_blank">https://admin.fedoraproject.org/mailman/listinfo/389-users</a><br>
> ><br>
> ><br>
> ><br>
> ------------------------------------------------------------------------<br>
> ><br>
> > --<br>
> > 389 users mailing list<br>
> > <a href="mailto:389-users@lists.fedoraproject.org">389-users@lists.fedoraproject.org</a><br>
> <mailto:<a href="mailto:389-users@lists.fedoraproject.org">389-users@lists.fedoraproject.org</a>><br>
> > <a href="https://admin.fedoraproject.org/mailman/listinfo/389-users" target="_blank">https://admin.fedoraproject.org/mailman/listinfo/389-users</a><br>
><br>
> --<br>
> 389 users mailing list<br>
> <a href="mailto:389-users@lists.fedoraproject.org">389-users@lists.fedoraproject.org</a><br>
> <mailto:<a href="mailto:389-users@lists.fedoraproject.org">389-users@lists.fedoraproject.org</a>><br>
> <a href="https://admin.fedoraproject.org/mailman/listinfo/389-users" target="_blank">https://admin.fedoraproject.org/mailman/listinfo/389-users</a><br>
><br>
><br>
> ------------------------------------------------------------------------<br>
><br>
> --<br>
> 389 users mailing list<br>
> <a href="mailto:389-users@lists.fedoraproject.org">389-users@lists.fedoraproject.org</a><br>
> <a href="https://admin.fedoraproject.org/mailman/listinfo/389-users" target="_blank">https://admin.fedoraproject.org/mailman/listinfo/389-users</a><br>
<br>
--<br>
389 users mailing list<br>
<a href="mailto:389-users@lists.fedoraproject.org">389-users@lists.fedoraproject.org</a><br>
<a href="https://admin.fedoraproject.org/mailman/listinfo/389-users" target="_blank">https://admin.fedoraproject.org/mailman/listinfo/389-users</a><br>
</div></div></blockquote></div><br>