[Freeipa-users] Problem with replica
Ludwig Krispenz
lkrispen at redhat.com
Thu Sep 24 07:33:40 UTC 2015
Hi,
can you try to get a core dump:
http://directory.fedoraproject.org/docs/389ds/FAQ/faq.html#debug_crashes
and open a ticket for 389 DS: https://fedorahosted.org/389/newticket
Ludwig
On 09/24/2015 09:08 AM, Nicola Canepa wrote:
> Hello, I'm trying to setup a partial replica of the LDAP tree stored
> in 389-ds by FreeIPA 4.1 (under CentOS 7), so that legacy systems have
> a local copy of the data needed to authenticate.
> Those systems have already OpenLDAP installed, so I 'm trying to
> enable syncrepl from DS to OL.
> I followed this ticket: https://fedorahosted.org/freeipa/ticket/3967
> and I enabled the 2 plugins as indicated.
> When the slave starts and tries to sync, the ns-slapd process on
> FreeIPA server dies, with this in syslog:
>> kernel: ns-slapd[4801]: segfault at 0 ip 00007f0f041f2db6 sp
>> 00007f0ecc7f0f38 error 4 in libc-2.17.so[7f0f0416e000+1b6000]
> immediately (same second) followed by:
>> named[1974]: LDAP error: Can't contact LDAP server: ldap_sync_poll()
>> failed
>> named[1974]: ldap_syncrepl will reconnect in 60 seconds
>> systemd: dirsrv at XXX.service: main process exited, code=killed,
>> status=11/SEGV
>
> There is nothing in access or error log (found in
> /var/log/dirsrv/INSTANCE) at that second (last log is 30 seconds
> before the problem).
>
> Even if replica doesn't work, I think it shoundn't kill the daemon.
>
>
> The ldif used on the slave:
>> dn: olcDatabase={1}bdb,cn=config
>> changetype: modify
>> replace:olcSyncrepl
>> olcSyncrepl: rid=0001
>> provider=ldap://AAA.TLD
>> type=refreshOnly
>> interval=00:1:00:00
>> retry="5 5 300 +"
>> searchbase="YYY"
>> attrs="*,+"
>> bindmethod=simple
>> binddn="uid=XXX,cn=users,cn=accounts,dc=YYY"
>> credentials=ZZZ
>
>
> Nicola
>
More information about the Freeipa-users
mailing list