<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <html> <head> <meta content="text/html;charset=ISO-8859-1" http-equiv="Content-Type"> <title></title> </head> <body bgcolor="#ffffff" text="#000000"> Hi Rich, very good point, I just discovered a very important difference. ldap1 - rpm -qi 389-ds-base gives - package "389-ds-base is not installed" - unlike of ldap2 which states the following output: Name : 389-ds-base Relocations: (not relocatable) Version : 1.2.2 Vendor: (none) Release : 1.el5 Build Date: Tue 25 Aug 2009 10:55:38 PM CEST Install Date: Sat 07 Nov 2009 09:33:41 PM CET Build Host: localhost Group : System Environment/Daemons Source RPM: 389-ds-base-1.2.2-1.el5.src.rpm Size : 5236534 License: GPLv2 with exceptions Signature : DSA/SHA1, Wed 26 Aug 2009 04:15:41 PM CEST, Key ID 0db66119a7b02652 URL : <a class="moz-txt-link-freetext" href="http://port389.org/">http://port389.org/</a> Summary : 389 Directory Server (base) Description : 389 Directory Server is an LDAPv3 compliant server. The base package includes the LDAP server and command line utilities for server administration. ldap1 is the machine I have taken after someone and I was told that it's the 389 dirserver. When I want an information about package installed on ldap1 I have to write: rpm -qi fedora-ds with this output: Name : fedora-ds Relocations: (not relocatable) Version : 1.1.3 Vendor: (none) Release : 1.fc6 Build Date: Wed 01 Apr 2009 09:15:05 PM CEST Install Date: Sat 11 Apr 2009 11:01:52 PM CEST Build Host: localhost Group : System Environment/Daemons Source RPM: fedora-ds-1.1.3-1.fc6.src.rpm Size : 12279 License: GPLv2 Signature : DSA/SHA1, Thu 02 Apr 2009 08:57:18 PM CEST, Key ID 0db66119a7b02652 URL : <a class="moz-txt-link-freetext" href="http://directory.fedoraproject.org/">http://directory.fedoraproject.org/</a> Summary : Red Hat Directory, Administration, and Console Suite Description : The Red Hat Directory Server, Administration Server, and Console Suite provide the LDAPv3 server, the httpd daemon used to administer the server, and the console GUI application used for server and user/group administration. Do you think this could be the part of the reason? Rich Megginson wrote: <blockquote cite="mid:4B0D5978.6060601@redhat.com" type="cite">Daniel wrote: <blockquote type="cite">Hi, I need a helping hand from some experienced 389-ds admin. I have built two LDAPs based on CentOS 5.3 and Fedora directory server. ldap1 - is the production server which is running a few months. all of the data are placed there. </blockquote> What version? rpm -qi 389-ds-base (or fedora-ds-base if still using fedora-ds) <blockquote type="cite">ldap2 - is the clean install of CentOS 5.3 and 389-ds, identical to ldap1, but with no data at all. </blockquote> What version? rpm -qi 389-ds-base The schema and syntax checking have been improved in 389 1.2.1 and later. Do you have any custom schema? <blockquote type="cite">My point is to replicate present ldap1 data in to the new ldap2 server. I went through the documentation here <a class="moz-txt-link-freetext" href="http://directory.fedoraproject.org/wiki/Howto:MultiMasterReplication">http://directory.fedoraproject.org/wiki/Howto:MultiMasterReplication</a> and everything seems to be OK Replication agreements are created, when I display them I get the following output replication agreements from ldap1.mydomain.com (389) ->ldap2.mydomain.com (389) replication agreements from ldap2.mydomain.com (389) ->ldap1.mydomaincom (389) ...but when I perform the ldapsearch for some certain records - ldap2 won't find anything. So I checked the ldap1 error log and found this 25/Nov/2009:13:08:40 +0100] NSMMReplicationPlugin - agmt_delete: begin [25/Nov/2009:13:08:48 +0100] NSMMReplicationPlugin - agmt="cn="Replication to ldap2.mydomain.com"" (ldap2:389): Schema replication update failed: Invalidsyntax [25/Nov/2009:13:08:48 +0100] NSMMReplicationPlugin - agmt="cn="Replication to ldap2.mydomain.com"" (ldap2:389): Warning: unable to replicate schema: rc=1 [25/Nov/2009:13:08:51 +0100] NSMMReplicationPlugin - agmt="cn="Replication to ldap2.mydomain.com"" (ldap2:389): Schema replication update failed: Invalid syntax [25/Nov/2009:13:08:51 +0100] NSMMReplicationPlugin - Warning: unable to replicate schema to host ldap2.mydomain.com, port 389. Continuing with total update session. [25/Nov/2009:13:08:51 +0100] NSMMReplicationPlugin - Beginning total update of replica "agmt="cn="Replication to ldap2.mydomain.com"" (ldap2:389)". [25/Nov/2009:13:08:54 +0100] NSMMReplicationPlugin - Finished total update of replica "agmt="cn="Replication to ldap2.mydomain.com"" (ldap2:389)". Sent 107 entries. Can you please explain to me what does it mean "Invalid syntax"? I googled but no useful information were found. So if someone knows what to do for solution I would greatly appreciate the help. Thank you very much. ~ Daniel. -- 389 users mailing list <a class="moz-txt-link-abbreviated" href="mailto:389-users@redhat.com">389-users@redhat.com</a> <a class="moz-txt-link-freetext" href="https://www.redhat.com/mailman/listinfo/fedora-directory-users">https://www.redhat.com/mailman/listinfo/fedora-directory-users</a> </blockquote> <pre wrap=""> <hr size="4" width="90%"> -- 389 users mailing list <a class="moz-txt-link-abbreviated" href="mailto:389-users@redhat.com">389-users@redhat.com</a> <a class="moz-txt-link-freetext" href="https://www.redhat.com/mailman/listinfo/fedora-directory-users">https://www.redhat.com/mailman/listinfo/fedora-directory-users</a> </pre> </blockquote> </body> </html>