Just realised the typo in my last email - s/dc=betfair/dc=example/, or vice versa to make
them consistent (I was testing with multiple suffixes)
[root@389-master02 slapd-389-master02]# ldapsearch -LLL -x -D "cn=directory
manager" -W -s one -b "cn=mapping tree,cn=config"
Enter LDAP Password:
dn: cn=dc\3Dbetfair,cn=mapping tree,cn=config
objectClass: top
objectClass: extensibleObject
objectClass: nsMappingTree
cn: dc=betfair
cn: "dc=betfair"
nsslapd-state: backend
nsslapd-backend: userRoot
dn: cn=o\3Dnetscaperoot,cn=mapping tree,cn=config
nsslapd-state: backend
objectClass: top
objectClass: extensibleObject
objectClass: nsMappingTree
cn: "o=netscaperoot"
cn: o=netscaperoot
nsslapd-backend: NetscapeRoot
[root@389-master02 slapd-389-master02]#
[root@389-master02 slapd-389-master02]# ldapsearch -LLL -x -D "cn=directory
manager" -W -s one -b "cn=ldbm database,cn=plugins,cn=config"
Enter LDAP Password:
dn: cn=config,cn=ldbm database,cn=plugins,cn=config
objectClass: top
objectClass: extensibleObject
cn: config
nsslapd-lookthroughlimit: 5000
nsslapd-mode: 600
nsslapd-idlistscanlimit: 4000
nsslapd-directory: /var/lib/dirsrv/slapd-389-master02/db
nsslapd-dbcachesize: 10000000
nsslapd-db-logdirectory: /var/lib/dirsrv/slapd-389-master02/db
nsslapd-db-durable-transaction: on
nsslapd-db-checkpoint-interval: 60
nsslapd-db-transaction-batch-val: 0
nsslapd-db-logbuf-size: 0
nsslapd-db-private-import-mem: on
nsslapd-import-cache-autosize: -1
nsslapd-import-cachesize: 20000000
nsslapd-idl-switch: new
nsslapd-search-bypass-filter-test: on
nsslapd-search-use-vlv-index: on
nsslapd-exclude-from-export: entrydn entryid dncomp parentid numSubordinates e
ntryusn
nsslapd-serial-lock: on
nsslapd-subtree-rename-switch: on
dn: cn=monitor,cn=ldbm database,cn=plugins,cn=config
objectClass: top
objectClass: extensibleObject
cn: monitor
database: ldbm database
dbcachehits: 3453
dbcachetries: 3459
dbcachehitratio: 99
dbcachepagein: 6
dbcachepageout: 17
dbcacheroevict: 0
dbcacherwevict: 0
dn: cn=NetscapeRoot,cn=ldbm database,cn=plugins,cn=config
objectClass: top
objectClass: extensibleObject
objectClass: nsBackendInstance
cn: NetscapeRoot
nsslapd-suffix: o=netscaperoot
nsslapd-cachesize: -1
nsslapd-cachememsize: 10485760
nsslapd-readonly: off
nsslapd-require-index: off
nsslapd-directory: /var/lib/dirsrv/slapd-389-master02/db/NetscapeRoot
nsslapd-dncachememsize: 10485760
dn: cn=userRoot,cn=ldbm database,cn=plugins,cn=config
objectClass: top
objectClass: extensibleObject
objectClass: nsBackendInstance
cn: userRoot
nsslapd-suffix: dc=betfair
nsslapd-cachesize: -1
nsslapd-cachememsize: 10485760
nsslapd-readonly: off
nsslapd-require-index: off
nsslapd-directory: /var/lib/dirsrv/slapd-389-master02/db/userRoot
nsslapd-dncachememsize: 10485760
[root@389-master02 slapd-389-master02]#
-----Original Message-----
From: 389-users-bounces(a)lists.fedoraproject.org
[mailto:389-users-bounces@lists.fedoraproject.org] On Behalf Of Rich Megginson
Sent: Thursday, August 05, 2010 6:07 PM
To: General discussion list for the 389 Directory server project.
Subject: Re: [389-users] replica/rdn problems with 1.2.6 rc6
Jonathan Boulle wrote:
When trying to enable consumer replication on a database/root suffix,
we get an "operations error" (in the GUI or command line with
ldapmodify) and the following in the log:
[05/Aug/2010:17:35:20 +0100] entryrdn-index - _entryrdn_insert_key:
Suffix "dc=example" not found: DB_NOTFOUND: No matching key/data pair
found(-30989)
[05/Aug/2010:17:35:20 +0100] - add: attempt to index 1 failed
[05/Aug/2010:17:35:20 +0100] NSMMReplicationPlugin -
_replica_configure_ruv: failed to create replica ruv tombstone entry
(dc=example); LDAP error - 1
Can you post the following:
ldapsearch -LLL -x -D "cn=directory manager" -w yourpassword -s one -b
"cn=mapping tree,cn=config"
and
ldapsearch -LLL -x -D "cn=directory manager" -w yourpassword -s one -b
"cn=ldbm database,cn=plugins,cn=config"
Be sure to obscure any sensitive information.
However, the exact same procedure works fine on 1.2.5 (haven't tested
with earlier RC versions of 1.2.6)
When trying to troubleshoot - if I manually add the following to the
directory:
dn: dc=betfair
dc: betfair
objectClass: top
objectClass: domain
I no longer get the above error, and the "Enable Replica" step
succeeds, but I see this in the log:
[05/Aug/2010:17:45:14 +0100] NSMMReplicationPlugin -
replica_add_by_dn: replica with dn (dc=example) already in the hash
[05/Aug/2010:17:45:14 +0100] NSMMReplicationPlugin -
replica_add_by_dn: replica with dn (dc=example) already in the hash
Haven't tested past this point - although this was definitely not
necessary on e.g. 1.2.5. I suspect it's related to the RDN shift
mentioned in the changelogs, but I've reproduced the same issue with
a) upgrades from previous versions of the packages (e.g. 1.2.5)
b) clean installs of the above packages on a completely fresh CentOS
5.5 build
Package versions:
389-ds-1.2.1-1.el5
389-admin-1.1.11-0.6.rc2.el5
389-ds-base-1.2.6-0.9.rc6.el5
Bugzilla time?
Cheers
______________________________________________________________________
__ In order to protect our email recipients, Betfair Group use SkyScan
from MessageLabs to scan all Incoming and Outgoing mail for viruses.
______________________________________________________________________
__
----------------------------------------------------------------------
--
--
389 users mailing list
389-users(a)lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/389-users
--
389 users mailing list
389-users(a)lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/389-users
________________________________________________________________________
In order to protect our email recipients, Betfair Group use SkyScan from
MessageLabs to scan all Incoming and Outgoing mail for viruses.
________________________________________________________________________