[389-users] Multi master replication - "Invalid syntax" error.

Rich Megginson rmeggins at redhat.com
Mon Nov 30 15:13:10 UTC 2009 

Daniel wrote:
> And what kind of action do you recommend?
>   
Let's first identify what version of fedora-ds - rpm -qi fedora-ds-base
> Rich Megginson wrote:
>   
>> Daniel wrote:
>>     
>>> Hi Rich,
>>>
>>> very good point, I just discovered a very important difference.
>>>
>>> ldap1 - rpm -qi 389-ds-base gives - package "389-ds-base is not
>>> installed" -
>>>       
>> rpm -qi fedora-ds-base
>>     
>>> unlike of ldap2 which states the following output:
>>>
>>> Name        : 389-ds-base                  Relocations: (not
>>> relocatable)
>>> Version     : 1.2.2                             Vendor: (none)
>>> Release     : 1.el5                         Build Date: Tue 25 Aug
>>> 2009 10:55:38 PM CEST
>>> Install Date: Sat 07 Nov 2009 09:33:41 PM CET      Build Host: localhost
>>> Group       : System Environment/Daemons    Source RPM:
>>> 389-ds-base-1.2.2-1.el5.src.rpm
>>> Size        : 5236534                          License: GPLv2 with
>>> exceptions
>>> Signature   : DSA/SHA1, Wed 26 Aug 2009 04:15:41 PM CEST, Key ID
>>> 0db66119a7b02652
>>> URL         : http://port389.org/
>>> Summary     : 389 Directory Server (base)
>>> Description :
>>> 389 Directory Server is an LDAPv3 compliant server.  The base package
>>> includes
>>> the LDAP server and command line utilities for server administration.
>>>
>>> ldap1 is the machine I have taken after someone and I was told that
>>> it's the 389 dirserver.
>>>
>>> When I want an information about package installed on ldap1 I have to
>>> write:
>>>
>>> rpm -qi fedora-ds
>>>
>>> with this output:
>>>
>>> Name        : fedora-ds                    Relocations: (not
>>> relocatable)
>>> Version     : 1.1.3                             Vendor: (none)
>>> Release     : 1.fc6                         Build Date: Wed 01 Apr
>>> 2009 09:15:05 PM CEST
>>> Install Date: Sat 11 Apr 2009 11:01:52 PM CEST      Build Host:
>>> localhost
>>> Group       : System Environment/Daemons    Source RPM:
>>> fedora-ds-1.1.3-1.fc6.src.rpm
>>> Size        : 12279                            License: GPLv2
>>> Signature   : DSA/SHA1, Thu 02 Apr 2009 08:57:18 PM CEST, Key ID
>>> 0db66119a7b02652
>>> URL         : http://directory.fedoraproject.org/
>>> Summary     : Red Hat Directory, Administration, and Console Suite
>>> Description :
>>> The Red Hat Directory Server, Administration Server, and Console
>>> Suite provide
>>> the LDAPv3 server, the httpd daemon used to administer the server,
>>> and the
>>> console GUI application used for server and user/group administration.
>>>
>>> Do you think this could be the part of the reason?
>>>       
>> I think the problem is schema/syntax incompatibility between fedora ds
>> and the latest 389 ds.  I'd like to try to narrow down exactly what
>> schema/syntax is causing the problem.
>>     
>>> Rich Megginson wrote:
>>>       
>>>> Daniel wrote:
>>>>         
>>>>> Hi, I need a helping hand from some experienced 389-ds admin.
>>>>>
>>>>> I have built two LDAPs based on CentOS 5.3 and Fedora directory
>>>>> server.
>>>>>
>>>>> ldap1 - is the production server which is running a few months. all of
>>>>> the data are placed there.
>>>>>   
>>>>>           
>>>> What version?  rpm -qi 389-ds-base (or fedora-ds-base if still using
>>>> fedora-ds)
>>>>         
>>>>> ldap2 - is the clean install of CentOS 5.3 and 389-ds, identical to
>>>>> ldap1, but with no data at all.
>>>>>   
>>>>>           
>>>> What version? rpm -qi 389-ds-base
>>>>
>>>> The schema and syntax checking have been improved in 389 1.2.1 and
>>>> later.  Do you have any custom schema?
>>>>         
>>>>> My point is to replicate present ldap1 data in to the new ldap2
>>>>> server.
>>>>>
>>>>> I went through the documentation here
>>>>> http://directory.fedoraproject.org/wiki/Howto:MultiMasterReplication
>>>>> and
>>>>> everything seems to be OK
>>>>> Replication agreements are created, when I display them I get the
>>>>> following output
>>>>>
>>>>> replication agreements from ldap1.mydomain.com (389)
>>>>>          ->ldap2.mydomain.com (389)
>>>>>
>>>>> replication agreements from ldap2.mydomain.com (389)
>>>>>          ->ldap1.mydomaincom (389)
>>>>>
>>>>> ...but when I perform the ldapsearch for some certain records - ldap2
>>>>> won't find anything.
>>>>>
>>>>> So I checked the ldap1 error log and found this
>>>>>
>>>>> 25/Nov/2009:13:08:40 +0100] NSMMReplicationPlugin - agmt_delete: begin
>>>>> [25/Nov/2009:13:08:48 +0100] NSMMReplicationPlugin -
>>>>> agmt="cn="Replication to ldap2.mydomain.com"" (ldap2:389): Schema
>>>>> replication update failed: Invalidsyntax
>>>>> [25/Nov/2009:13:08:48 +0100] NSMMReplicationPlugin -
>>>>> agmt="cn="Replication to ldap2.mydomain.com"" (ldap2:389): Warning:
>>>>> unable to replicate schema: rc=1
>>>>> [25/Nov/2009:13:08:51 +0100] NSMMReplicationPlugin -
>>>>> agmt="cn="Replication to ldap2.mydomain.com"" (ldap2:389): Schema
>>>>> replication update failed: Invalid syntax
>>>>> [25/Nov/2009:13:08:51 +0100] NSMMReplicationPlugin - Warning:
>>>>> unable to
>>>>> replicate schema to host ldap2.mydomain.com, port 389. Continuing with
>>>>> total update session.
>>>>> [25/Nov/2009:13:08:51 +0100] NSMMReplicationPlugin - Beginning total
>>>>> update of replica "agmt="cn="Replication to ldap2.mydomain.com""
>>>>> (ldap2:389)".
>>>>> [25/Nov/2009:13:08:54 +0100] NSMMReplicationPlugin - Finished total
>>>>> update of replica "agmt="cn="Replication to ldap2.mydomain.com""
>>>>> (ldap2:389)". Sent 107 entries.
>>>>>
>>>>> Can you please explain to me what does it mean "Invalid syntax"?
>>>>> I googled but no useful information were found.
>>>>>
>>>>> So if someone knows what to do for solution I would greatly appreciate
>>>>> the help.
>>>>>
>>>>> Thank you very much.
>>>>>
>>>>> ~ Daniel.
>>>>>
>>>>> -- 
>>>>> 389 users mailing list
>>>>> 389-users at redhat.com
>>>>> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>>>>>   
>>>>>           
>>>> ------------------------------------------------------------------------
>>>>
>>>>
>>>> -- 
>>>> 389 users mailing list
>>>> 389-users at redhat.com
>>>> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>>>>   
>>>>         
>>> ------------------------------------------------------------------------
>>>
>>> -- 
>>> 389 users mailing list
>>> 389-users at redhat.com
>>> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>>>   
>>>       
>> ------------------------------------------------------------------------
>>
>> --
>> 389 users mailing list
>> 389-users at redhat.com
>> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>>   
>>     
>
> --
> 389 users mailing list
> 389-users at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>   

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3258 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://listman.redhat.com/archives/fedora-directory-users/attachments/20091130/728f7866/attachment.bin>

More information about the Fedora-directory-users mailing list