LDAP Replication

How to replicate an LDAP database to a second server.

Resources
OpenLDAP Administration Guide's section on LDAP SyncReplication.

"Provider" ("master") configuration
On the provider (master) server, edit /usr/local/etc/openldap/slapd.conf and change the index line from something similar to:

index objectClass eq

to:

index objectClass,entryCSN,entryUUID eq

Then add 3 lines:

overlay syncprov
syncprov-checkpoint 100 10
syncprov-sessionlog 100

Restart slapd:

svc -t /service/slapd

"Consumer" ("slave") configuration
Once the replica server, edit /usr/local/etc/openldap/slapd.conf and add/edit the index line to:

index objectclass,entryCSN,entryUUID eq

Then add the syncrepl details:

syncrepl rid=123
 provider=ldap://provider.example.com:389
 type=refreshOnly
 interval=01:00:00:00
 searchbase="dc=example,dc=com"
 filter="(objectClass=organizationalPerson)"
 scope=sub
 attrs="cn,sn,ou,telephoneNumber,title,l"
 schemachecking=off
 bindmethod=simple
 binddn="cn=syncuser,dc=example,dc=com"
 credentials=secret

Recent Updates

Apache

2 years 3 days ago
Apache

2 years 3 days ago
lighttpd

2 years 5 days ago

php 8.x
MariaDB

2 years 6 days ago

10.6.7
CentOS

2 years 1 week ago

Drop Centos 5/6 stuff

Recent Links

SquidGuard

SquidGuard is a URL redirector used to use blacklists with the proxysoftware Squid. There are two big advantages to squidguard: it is fast and it is free.
NCurses Disk Usage

A disk usage analyzer with an ncurses interface, aimed to be run on a remote server where you don't have an entire gaphical setup, but have to do with a simple SSH connection. ncdu aims to be fast, simple and easy to use, and should be able to run in any minimal POSIX-like environment with ncurses installed.
WPKG

WPKG is an automated software deployment, upgrade and removal program for Windows.

It can be used to push/pull software packages, such as Service Packs, hotfixes, or program installations from a central server (for example, Samba or Active Directory) to a number of workstations.

It can run as a service to install software in the background (silent install), without user interaction.

It can install MSI, InstallShield, PackagefortheWeb, Inno Setup, Nullsoft, other software installers or .exe packages, .bat and .cmd scripts and similar: no more repackaging to perform software installation.

WPKG is open source software.
opsi

opsi (Open PC Server Integration) the Open Source client management system
Vagrant

Vagrant is a tool for building complete development environments. With an easy-to-use workflow and focus on automation, Vagrant lowers development environment setup time, increases development/production parity, and makes the "works on my machine" excuse a relic of the past.

Main menu

You are here

LDAP Replication

Recent Updates

Recent Links