Software :: Master And Slave OpenLDAP Setup Using Replication Method
May 13, 2011
I'm setting up a Master and Slave OpenLDAP (ver. 2.4.25) use Replication method following {URL]. When I used slapdcat (slapdcat -l master_dump.ldif), I got a message:
root@ldap:/usr/local/openldap/sbin# ./slapcat -l master_dump.ldif
/usr/local/openldap/etc/openldap/slapd.conf: line 89: <replogfile> keyword is obsolete (ignored)
/usr/local/openldap/etc/openldap/slapd.conf: line 91: <replica> keyword is obsolete (ignored)
bdb_db_open: warning - no DB_CONFIG file found in directory /usr/local/openldap/var/openldap-data: (2).
Expect poor performance for suffix "dc=abc,dc=com".
bdb_monitor_db_open: monitoring disabled; configure monitor database to enable
My Master slapd.conf is:
# Require 112-bit (3DES or better) encryption for updates
# Require 63-bit encryption for simple bind
# security ssf=1 update_ssf=112 simple_bind=64
# Sample access control policy:
# Root DSE: allow anyone to read it
# Subschema (sub)entry DSE: allow anyone to read it
# Other DSEs:
# Allow self write access
# Allow authenticated users read access
# Allow anonymous users to authenticate
# Directives needed to implement policy:
# access to dn.base="" by * read
# access to dn.base="cn=Subschema" by * read
# access to *
# by self write
# by users read
# by anonymous auth
# if no access controls are present, the default policy allows anyone and everyone to read anything but restricts updates to rootdn. (e.g., "access to * by * read") .....
My Slave slapd.conf is similar configuration to the Master Server...
View 5 Replies
ADVERTISEMENT
Aug 12, 2010
I started over combining the first parts of this guide: [URL]..ubuntu8.04 (Only the first few parts in terms of configuration and naming). Then I used this guide: [URL]..Surprisingly enough all steps worked.
1. Now I need to set up LAMP servers with MySQL master/slave replication and Apache rsync.
2. Next i need to add BIND to both my Load Balancers with master/slave backup and replication...
Are there any guides to look at to follow on these? Can tou point me to the right direction for BIND with replication.
View 1 Replies
View Related
Nov 29, 2010
I configured a master DNS server 192.168.2.10 working OK. After that I configure a DNS Slave Server (92.168.2.11)the initial replication worked fine. This is test environment for my certification. I see how the zones from my master are transferred
zones in Master
training.com.db
transferred zone to my slave when I started named service
sec.training.com.db
That's Ok but I added some IPs to resolve to my master zone
webserver IN A 192.168.2.30
fileserver IN A 192.168.2.31
I restart/reload named on master and after that I go to slave and restart/reload but zones wuth the new values are not replicated. How long does it take for slave to take the changes from master? how is the procedure manual or automatic? I see If I go to slave and delete sec.training.com and restart named the zone with the changes is transferred but that is very manual... I am including my DNS Configuration so you can take a look.
View 4 Replies
View Related
Feb 8, 2011
I need to perform instant filecopy between a pair of servers. Its loosely based on a master slave setup as we have ucarp floating a virtual IP between the two. services are on both boxes (tftp, apache). I'm happy with that, I now need a way to instantly sync files from set directories, as we could see problems if files have changed should the system fail over without being in sync
I know I could cron *1 but I don't want it running EVERY minute, in any case, if the change was within the last minute, then it wouldn't have the change anyway. I think it can be done with rsync daemons on box boxes, but I can't find a guide to to this. ATM the slave has been setup to accept rsync from the master, so I just need the config to have all changes on the master instantly replicated.
View 3 Replies
View Related
Mar 31, 2010
I have a load balancer with 2 web servers behind it. The web servers rsync with cloud storage to update their apache directories 1 time every hour. Apache is just running php pages that pull/push data to a DB so they dont need to be updated that often. However I need to figure out how to implement a Master/Master MySQL setup to have my web servers point to for the PHP stuff. I need to implement it without having a single point of failure. The Load balancers are useless for failover as they only detect availability based on Ping request. So putting a master/master setup behind a Load Balancer is out. what is the best way to setup the master/master mysql in a HA setup without the use of a load balancer provided by the host?
View 2 Replies
View Related
Jun 29, 2009
I have been using OpenLDAP 2.4 with OpenSuse 11 without any issues but I now want to configure replication and can't see how it's done . The OpenLDAP 2.4 admin guide refers to the slapd.conf configuration file but this is not used by YaST.
View 4 Replies
View Related
Aug 8, 2011
I have two computers (one tower, one laptop). On both the computers, I have apache & PHP & mysql running, so i can program/script anywhere I like. With a simple sync'ing program, the PHP scripts are synced between the PC's, thought the databases arent. Therefor I'm looking for a method to sync (replicate) the databases between the PC's. thought after setting up some configuration, i'm stuck... now with how to, but what to
Option 1) Multi-master replication between the PC and the laptop. With this setup, the database can ONLY sync once both the devices are turned on. Also it can only sync if they are turned on on my LAN, since they do not have an external static IP address. if I turn on both PC's on my LAN, with static IP's (from the DHCP server), this option will work. Thought, I basically never have both pc's turned on in my own home... cuz i can use only one at the time anyway.So I was thinking of another setup
Option 2) Multi-master replication with: online Server, PC and Laptop. The server basically contains the most up to date database. for example, the laptop updates the server and the server can update the PC later, once the PC is turned on. Also the other way around, the PC can update the server which can than update the Laptop.
There is, if i'm correct, only one problem: the only multi master replications setups I found, use a circulair setup... (1 updates 2, 2 updates 3, 3 updates 1) What I need is to have the PC update the server, but ALSO have the server update the PC (same for the laptop)
than there is another (little) problem: the PC and laptop cannot be reached from behind the modem, nor do they have a static IP. My question: Is it possible to sync the server with the laptop (that has no static IP), the laptop with the server (that has a static IP), and the same for the PC
PC <====> Server <====> Laptop
View 1 Replies
View Related
Aug 14, 2010
i'm about to perform a fresh ubuntu install, and i was wondering if anyone knew whether installing on the slave or master drive mattered. i know if you're installing on the same drives it's slightly faster for ubuntu to be installed first, but that doesn't seem to be the case since i have two separate drives
View 9 Replies
View Related
Mar 15, 2010
I installed bind 9 sucessfully, and create many zones on its.
I want to biuld 1 slave server but i have problem :
How to transfer all zone from master to slave server ?
View 1 Replies
View Related
Apr 12, 2011
I have bind configured with Internal and External views, but the slave server is transferring only the Internal zone files for both Internal and External - a diff shows no difference, and the log shows the same serial number.What am I missing in the config so the slave server properly receives updates from the master for both views?
View 2 Replies
View Related
Jan 27, 2010
I have set up a master BIND DNS server with 2 slaves. All the services start up fine on all 3 servers, but zones and named.conf info is not being replicated. The 3 servers are tentatively installed on a Xen virtual server for testing purposes. All 3 servers are 64bit and installed with: -> CentOS release 5.4 (Final) - 2.6.18-164.10.1.el5xen -> BIND 9.3.6-P1-RedHat-9.3.6-4.P1.el5_4.2
All 3 servers are fully updated. All 3 servers have static IP addresses. The services on all 3 servers start up without any apparent issues. Master server: # /etc/init.d/named restart ; tail -f /var/log/messages
[Code]...
View 10 Replies
View Related
May 1, 2011
I have an EeePC 901, with a 4gb SSD and a 16gb SSD installed. Trying to get Natty installed and hit a few problems not least of which, that it won't fit on the 4gb drive! However in my BIOS setup under HDD config it says:
Secondary Master=4gb
Secondary Slave=16gb
I have no other devices attached. Why aren't they Primary? And I can't seem to switch them round.
View 5 Replies
View Related
Jan 27, 2010
Is there any possible to convert slave to master, and enable writing to db?
View 4 Replies
View Related
May 13, 2010
How to configure the master and slave on 5 Sata disks? Is there that or it is automatic.I install Debian, ok, master boot ok, on the first sataAnd at reboot, just after install, the boot hangs and no grub appears.
View 3 Replies
View Related
Jan 25, 2011
I have a large environment with many VLANs and NIS slaves serving the VLANs. Previously we have not used a securenets file (don't worry; we don't use NIS for passwords, just NFS maps), but I'd like to start. The number of NIS slaves makes it annoying to update a securenets file on each when we add a new VLAN. Is there a way to propagate the securenets file to each slave when I update it on the master?If not, I guess I can live with propagating the file once and only visiting new slaves when I build them, because in 99% of cases a NIS slave only serves its own subnet.
View 1 Replies
View Related
Feb 19, 2011
I have configured master and slave Bind servers. Everything works fine. But whenever I add a new zone entry at master server it is not getting updated at slave server in logs I see this error:
client 192.168.1.1#43428: view external: received notify for zone 'yourdomainname.com': not authoritative
At master server I do not see any error or warning message. This error clearly indicates that named.conf file does not have zone entry in it or domain name is wrong. While checking the named.conf file I see that the zone entry has not been updated at slave server. If I update it manually and reload named on slave then zone files (db files) are getting created without any issue and any modification at master server for the zone records are also getting updated. My concern is why zone record is not getting appended at slave server in named.conf file.
Is there anything I am missing in the configuration. I am pasting the steps which I have followed to configure my master and slave server:
Configure Bind as master and slave server
Install Bind on your server
yum install bind
OR
sudu apt-get install bind9
Generate RNDC Key using the command
rndc-confgen -a -k rndc-key
it will stored in /etc/rndc-key file
Master Server IP 192.168.0.1
Slave Server IP 192.168.1.1
Master Server Configuration
options .....
View 8 Replies
View Related
Jul 11, 2011
In our Server they configure Master / Slave Dns using SSL authentication while tranfering the zone files, i dont have much idea about ssl authentication for Dns, how it will works
View 3 Replies
View Related
Feb 2, 2010
i would like to know how to setup Samba file replication between two Opensuse 10.3 servers,
View 7 Replies
View Related
Jun 21, 2010
I am looking into setting up replication in a production environment but currently this is on two test machines. I am following the documentation at [URL] but I am unable to get past "16.1.1.10 Setting the Master Configuration on the Slave". When I do the CHANGE MASTER TO I am getting a syntax error for some reason. What am I doing wrong? These servers run "CentOS release 5.5 (Final)" and "MySQL 5.0.77-log Source distribution" installed via yum. The only changes from default are that I created a single database on the master before doing the table lock and dump, then everything else has been done exactly to what the documentation states, but is still failing.
The option skip-networking is not in the config file on either server and neither one runs SELinux or any firewall.
mysql> CHANGE MASTER TO
-> MASTER_HOST='192.168.1.220'
-> MASTER_USER='repl'
-> MASTER_PASSWORD='removed'
[Code]....
View 3 Replies
View Related
May 3, 2010
Have someone used Linux heartbeat to send email when the Slave server becomes the Master? I've read I can configure the MailTo under.
But I really don't know how to do it. I basically need my primary server to send an email when it becomes inactive and all the activities are manage by the secondary node.
View 7 Replies
View Related
Apr 23, 2010
Have older system, self-built around 2000 or so. My plan is to optimize the system for speed and utility, upgrade the OS from W2000 Pro to XP Pro, and include dual boot so as to install some version/distro (?) of Linux to learn on. Present system: X86 based (32 bit), using a P4, 1.8 GHz/400 MHz fsb, with 512mb of DDR RAM installed, can upgrade to 2 gigs total.Shuttle MV42 motherboard, including onboard video and sound (S3 Graphics ProSavage DDR P4M266/VIA 8751/8233 chipset, VIA AC'97 Audio Controller, 2.2 compliant)
If I should decide to use the available 160 gig drive as a dual boot system, in order to install both XP and some version of Linux, how should I set it up? How many partitions will XP and Linux need or work with best? How much space for each OS? What file systems? Should I format/partition it with the existing W2000 OS? What comes first, the chicken or the egg? (XP or Linux?) I have read somewhere that it matters which OS is installed first, due to boot records being overwritten by successive OS installs. I plan to keep W2000 on the first HDD at least until I move my files over to XP. Will I need to switch the master/slave designations after installing XP and Linux on the new drive, since I will want to boot from that drive?
View 3 Replies
View Related
Dec 17, 2010
I have setuped OpenLDAP+Samba PDC. When I create user and group -> Errors.
smbldap-group -a admin
No such object at /usr/sbin/smbldap_tools.pm line 457
smbldap-useradd -am -g admin admin
Could not find base dn, to get next uidNumber at /usr/sbin/smbldap_tools.pm line 1192
View 3 Replies
View Related
Feb 13, 2011
Trying to setup a Kerberos + OpenLDAP server to manage users for our Samba shares (was going to use just OpenLDAP, but apparently it is less secure than using Kerberos with it). (Distro: CentOS 5.5) Haven't even gotten to the point of connecting either to Samba yet. I have set up a Kerberos server, and configured it as necessary. I am happy that it is working as intended, as I can login and manage principals from both the local terminal and remotely on other clients.
I have setup a server (sv1.myhost.net), and configured it to talk to Kerberos (auth.myhost.net). I have created both a [URL] principal, and a testuser principal. I have set the password on the testuser but not on the host/sv1.myhost.net. I have added the keys for both users to the keytab file on the sv1.myhost.net. I am at a Windows 7 machine (on the same internal network), and have installed the Network Identity Manager. It is able to request a ticket successfully for the testuser account.
When I use putty w/GSSAPI (0.58) to remote login to the system, it says using 'testuser' and then just hangs there. Eventually putty connection times out. The fact that both machines can connect to the auth server to communicate with kerberos correctly suggests firewalls are correct. The relevant entries in sshd_config have been uncommented to tell srv1 to use Kerberos authentication.
View 3 Replies
View Related
Mar 11, 2011
I just switched back from Mint 10, and while setting to work different input method apps like SCIM and Ibus, bumped into a problem(welcome back to SUSE). After installing Scim, my chinese input works only on one application (Goldendict), it doesn't work in any other app. So I tried Ibus, same result. SO far nothing helped me to make them work. What I 'm trying to find out. Is where I can setup language input method in SUSE, I haven't found such an option anywhere in KDE, yast. WHile in Mint there is such an option, where you can change your inpud method either to scim, xim, scim-bridge or ibus. I tried qtconfig, there I found it, P.S. Warning rage words!: I feel like I should say it. But my previous SUSE experience and overall usage history proves that there is no better distro than Ubuntu nowadays, this is sad indeed, cause I used to start from SUSE. But its true, SUSE is a real pain in the ***, when it comes to getting things done. It seems like whenever u try to setup something there is always a bad feeling of failure. Don't know, but again I'm been consecutively annoyed but its numbness. I'm sorry, cause I feel like I disregard ppl's hard work and support.
View 9 Replies
View Related
Jun 10, 2010
I got two issues with my wifi usb adapter:
1) it cannot see any networks around
2) i cannot setup it in master mode to use my PC as a router
As far as i can see, the device is recognized and the correct driver (rt73usb) is loaded. I was able to connect to a laptop somehow (the laptop could see other networks and the adapter's PC-to-PC network). I'd like to make it work as a router, i.e. share my internet connection (eth0) via wlan0. Here is what i have:
Code:
Ubuntu 10.04
Linux 2.6.32-22-generic #36-Ubuntu SMP Thu Jun 3 19:31:57 UTC 2010 x86_64 GNU/Linux
TP-Link TL-WN321G wifi usb adapter as seen as
Bus 001 Device 006: ID 148f:2573 Ralink Technology, Corp. RT2501USB Wireless Adapter
$ iwconfig wlan0
wlan0 IEEE 802.11bg ESSID:off/any
[Code]....
View 4 Replies
View Related
Aug 27, 2009
Faced with disk-bound issues on a FTP server with high traffic. Would like to set up multiple FTP server nodes with dedicated storage for each node where all FTP access is managed by a master FTP server. So, a user would FTP to a single externally visible IP address for the master FTP server and then get routed to the appropriate FTP node. Are the mutiple FTP nodes required or is there a better way of doing this? Perhaps only one FTP server is required and then each node would serve as a separate file server
View 1 Replies
View Related
Nov 13, 2009
I'm managing a residential network. Each flat is its own subnet, and can only communicate with the other flats through a router (i.e. no broadcast). 95% of these 300 subnets only contains windows computers (from lambda users).
My final goal is to be able to browse the entire network from any computer.
I set up a samba server acting as a wins server, and every computer is aware of it because it is registered in the dhcp. So name resolution is working fine for everyone.
The same samba server is set to be the "Domain master browser":
workgroup = WORKGROUP
wins support = yes
prefered master = yes
local master = yes
domain master = yes
os level = 65
When I browse the network (using "net view" or "browstat view"), I can only see the servers which are in the same subnet as the domain master browser.
Now, when in a subnet the computers arrange themselves to find a "local master browser", the only visible computers are the one in that subnet.
What I don't understand is why all the local masters don't synchronize their lists with the domain master.
So, to sum up, every subnet get the following behaviour:
-if a local master is elected, the only visible computers are the one in the same subnet.
-if no local master is elected, the only visible computers are the one in the subnet of the domain master.
-if I add another samba, configured as a local master winning all elections, then the magic is working and the lists are synchronized.
What is expected:
-every computer can see all the computer from all the subnets.
View 1 Replies
View Related
Aug 1, 2010
I am setting up a LDAP server in Fedora 13 system. I did the installation of the packages of openldap-server, openldap-client and openldap-server-sql (beause I may use sql as backend, install first). However, when I did the setup check by command: dapadd -f stooges.ldif -xv -D "cn=StoogeAmin,o=stooges" -h 127.0.0.1 -w secret1
and always says: ldap_bind: Invalid credentials (49) I am using slapd.conf for test as below. I did check the password are same.
[Code]...
View 7 Replies
View Related
Feb 14, 2011
I followed the instructions here:
[URL]
This is on CentOS 5.5 with all the latest updates.
I changed rootdn and rootpw in /etc/openldap/slapd.conf with the info for my domain and with an encrypted password using slapcat.
Now when I try to use slapadd like so:
ldapadd -x -D "cn=admin,dc=domain,dc=com" -w passwd -f /tmp/base.ldif
I get the error: ldap_bind: Invalid credentials (49)
I feel like this is a pretty basic/default setup, I haven't changed anything else in /etc/openldap/slapd.conf but for some reason it's not authenticating using the rootpw and rootdn information that I've provided in the config file.
View 20 Replies
View Related
Jun 8, 2010
Code:
$ su -c 'yum install wine'
this forum won't let me put all the text in Transaction Check Error: package openldap-2.4.21-6.fc13.x86_64 (which is newer than openldap-2.4.21-4.fc13.i686) is already installed package nss-softokn-freebl-3.12.4-19.fc13.x86_64 (which is newer than nss-softokn-freebl-3.12.4-17.fc13.i686) is already installed
View 4 Replies
View Related
