[Freeipa-users] more replication issues
Rich Megginson
rmeggins at redhat.com
Wed May 13 16:13:11 UTC 2015
On 05/13/2015 10:04 AM, Janelle wrote:
> On 5/13/15 8:49 AM, Rich Megginson wrote:
>> On 05/13/2015 09:40 AM, Janelle wrote:
>>> Recently I started seeing these crop up across my servers:
>>>
>>> slapi_ldap_bind - Error: could not bind id [cn=Replication Manager
>>> masterAgreement1-ipa01.example.com-pki-tomcat,ou=csusers,cn=config]
>>> authentication mechanism [SIMPLE]: error 32 (No such object) errno 0
>>> (Success)
>>
>> Does that entry exist?
>>
>> ldapsearch -xLLL -h consumer.host -D "cn=directory manager" -W -s
>> base -b "cn=Replication Manager
>> masterAgreement1-ipa01.example.com-pki-tomcat,ou=csusers,cn=config"
>>
>> Does the parent exist?
>>
>> ldapsearch -xLLL -h consumer.host -D "cn=directory manager" -W -s
>> base -b "ou=csusers,cn=config"
>
> I am finding that there does seem to be a relation to the above error
> and a possible CSN issue:
>
> Can't locate CSN 555131e5000200190000 in the changelog (DB rc=-30988).
> If replication stops, the consumer may need to be reinitialized.
>
> I guess what concerns me is what could be causing this. We don't do a
> lot of changes all the time.
>
> And in answer to the question above - we seem to have last the
> agreement somehow:
>
> No such object (32)
>
Is there a DEL operation in the access log for "cn=Replication Manager
masterAgreement1-ipa01.example.com-pki-tomcat,ou=csusers,cn=config"?
maybe something like
# grep DEL /var/log/dirsrv/slapd-INST/access|grep -i "Replication Manager"
> results from the first ldapsearch.
>
> however, the parent is there:
> dn: ou=csusers,cn=config
> objectClass: top
> objectClass: organizationalUnit
> ou: csusers
>
>
More information about the Freeipa-users
mailing list