Posted on Sun, 05/06/2012 - 11:44
This howto can be used for an OpenLDAP server which is using "old" slapd configuration method.
The Openldap overlay module syncrepl, is the replacement for the old slurpd replication system.
To enable syncrepl add the following lines to the /etc/openldap/slapd.conf on the master Openldap server.
overlay syncprov
syncprov-checkpoint 100 10
syncprov-sessionlog 100
syncprov-checkpoint 100 10
syncprov-sessionlog 100
Restart the ldap server to activate changes.
$ /etc/init.d/ldap restart
Add the following lines to the slapd.conf on the slave server.
syncrepl rid=2
provider=ldap://ldap-server:389
type=refreshOnly
interval=00:00:10:00
searchbase="dc=oostergo,dc=net"
filter="(objectClass=*)"
scope=sub
attrs="*,+"
schemachecking=off
bindmethod=simple
binddn="cn=replication,dc=oostergo,dc=net"
credentials=password
provider=ldap://ldap-server:389
type=refreshOnly
interval=00:00:10:00
searchbase="dc=oostergo,dc=net"
filter="(objectClass=*)"
scope=sub
attrs="*,+"
schemachecking=off
bindmethod=simple
binddn="cn=replication,dc=oostergo,dc=net"
credentials=password
overlay syncprov
Make sure the replication user is added to your LDAP directory.
Start the slave server to activate the replication.
$ /etc/init.d/ldap start