<html><head></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; ">Once again, thank you so much. The first URL, I did read all that and tried to make that work. 11.5.2-3g in particular but those changes weren't being applied. I have added the specific nsDS5ReplicaReferral attribute and all is working just right now.<div><br></div><div>/mrg</div><div><br><div><div>On Mar 6, 2012, at 23:11, Rich Megginson wrote:</div><br class="Apple-interchange-newline"><blockquote type="cite">
<meta content="text/html; charset=UTF-8" http-equiv="Content-Type">
<div bgcolor="#FFFFFF" text="#000000">
On 03/06/2012 07:33 PM, Michael R. Gettes wrote:
<blockquote cite="mid:C3E79180-C63B-4BCE-B720-3AE3CF09EEA7@gmail.com" type="cite">
<pre wrap="">389-ds-base is 1.2.9.9 on EL5
I have an MMR setup, 2 suppliers to 3 consumers. I am replicating userRoot and netscapeRoot.
All replication agreements are over SSL:636 using simple binds. On the consumers, the referrals shown in the mapping tree (nsslapd-referral) are <a class="moz-txt-link-freetext" href="ldap://hostname:389/suffix">ldap://hostname:389/suffix</a> for each supplier. I need them to be <a class="moz-txt-link-freetext" href="ldaps://hostname:636/suffix">ldaps://hostname:636/suffix</a>. I have changed them live and then I make an object change and it works as I would expect. But when I restart the dsa the referrals are reset to <a class="moz-txt-link-freetext" href="ldap://hostname:389/suffix">ldap://hostname:389/suffix</a>
how do i prevent the nsslapd-referral attributes from being reset?</pre>
</blockquote>
See
<a class="moz-txt-link-freetext" href="http://docs.redhat.com/docs/en-US/Red_Hat_Directory_Server/9.0/html-single/Administration_Guide/index.html#Multi_Master_Replication-Configuring_the_Read_Only_Replicas_on_the_Consumer_Servers">http://docs.redhat.com/docs/en-US/Red_Hat_Directory_Server/9.0/html-single/Administration_Guide/index.html#Multi_Master_Replication-Configuring_the_Read_Only_Replicas_on_the_Consumer_Servers</a><br>
<br>
<ol>
<li class="listitem">
<div class="para"> Specify the URL for any supplier servers to
which to refer updates, such as the other suppliers in the
multi-master replication set. Only specify the URL for the
supplier server. </div>
<div class="para"> For clients to bind using SSL, specify a URL
beginning with <code class="command"><a class="moz-txt-link-freetext" href="ldaps://">ldaps://</a></code>. </div>
</li>
</ol>
See also
<a class="moz-txt-link-freetext" href="http://docs.redhat.com/docs/en-US/Red_Hat_Directory_Server/9.0/html/Configuration_Command_and_File_Reference/Core_Server_Configuration_Reference.html#Replication_Attributes_under_cnreplica_cnsuffixName_cnmapping_tree_cnconfig-nsDS5ReplicaReferral">http://docs.redhat.com/docs/en-US/Red_Hat_Directory_Server/9.0/html/Configuration_Command_and_File_Reference/Core_Server_Configuration_Reference.html#Replication_Attributes_under_cnreplica_cnsuffixName_cnmapping_tree_cnconfig-nsDS5ReplicaReferral</a><br>
<blockquote cite="mid:C3E79180-C63B-4BCE-B720-3AE3CF09EEA7@gmail.com" type="cite">
<pre wrap="">
Thanks.
/mrg
--
389 users mailing list
<a class="moz-txt-link-abbreviated" href="mailto:389-users@lists.fedoraproject.org">389-users@lists.fedoraproject.org</a>
<a class="moz-txt-link-freetext" href="https://admin.fedoraproject.org/mailman/listinfo/389-users">https://admin.fedoraproject.org/mailman/listinfo/389-users</a></pre>
</blockquote>
<br>
</div>
</blockquote></div><br></div></body></html>