<html>
<head>
<meta content="text/html; charset=UTF-8" http-equiv="Content-Type">
</head>
<body text="#000000" bgcolor="#FFFFFF">
<div class="moz-cite-prefix">On 04/02/2014 09:20 AM, Nevada Sanchez
wrote:<br>
</div>
<blockquote
cite="mid:CAPUVn2tOCRGCptCicnMt2G3Adz=3MwnRSAU31pY4ac64JPRZ2A@mail.gmail.com"
type="cite">
<div dir="ltr">Okay, we might be on to something:
<div><br>
</div>
<div>
<div>ipa -> ipa2</div>
<div>================================</div>
<div>$ LDAPTLS_CACERTDIR=/etc/dirsrv/slapd-EXAMPLE-COM
ldapsearch -xLLLZZ -h <a moz-do-not-send="true"
href="http://ipa2.example.com">ipa2.example.com</a> -s
base -b "" 'objectclass=*' vendorVersion</div>
<div>dn:</div>
<div>vendorVersion: 389-Directory/1.3.1.22.a1 B2014.073.1751</div>
<div>================================</div>
<div><br>
</div>
<div>ipa2 -> ipa</div>
<div>================================</div>
<div>$ LDAPTLS_CACERTDIR=/etc/dirsrv/slapd-EXAMPLE-COM
ldapsearch -xLLLZZ -h <a moz-do-not-send="true"
href="http://ipa.example.com">ipa.example.com</a> -s base
-b "" 'objectclass=*' vendorVersion</div>
<div>ldap_start_tls: Connect error (-11)</div>
<div><span class="" style="white-space:pre"> </span>additional
info: TLS error -8172:Peer's certificate issuer has been
marked as not trusted by the user.</div>
<div>================================</div>
</div>
<div><br>
</div>
<div>The original IPA trusts the replica (since it signed the
cert, I assume), but the replica doesn't trust the main IPA
server. I guess the ZZ option would have shown me the failure
that I missed in my initial ldapsearch tests.</div>
</div>
</blockquote>
-Z[Z] Issue StartTLS (Transport Layer Security) extended
operation. If<br>
you use -ZZ, the command will require the operation
to be suc-<br>
cessful.<br>
<br>
i.e. use SSL, and force a successful handshake<br>
<br>
<blockquote
cite="mid:CAPUVn2tOCRGCptCicnMt2G3Adz=3MwnRSAU31pY4ac64JPRZ2A@mail.gmail.com"
type="cite">
<div dir="ltr">
<div><br>
</div>
<div>Anyway, what's the best way to remedy this in a way that
makes IPA happy? (I've found that LDAP can have different
requirements on which certs go where).</div>
</div>
</blockquote>
<br>
I'm not sure.
ipa-server-install/ipa-replica-prepare/ipa-replica-install is
supposed to take care of installing the CA cert properly for you.
If you try to hack it and install the CA cert manually, you will
probably miss something else that ipa install did not do.<br>
<br>
I think the only way to ensure that you have a properly configured
ipa server + replicas is to get all of the ipa commands completing
successfully.<br>
<br>
Which means going back to the drawing board and starting over from
scratch.<br>
<br>
<blockquote
cite="mid:CAPUVn2tOCRGCptCicnMt2G3Adz=3MwnRSAU31pY4ac64JPRZ2A@mail.gmail.com"
type="cite">
<div class="gmail_extra"><br>
<br>
<div class="gmail_quote">On Wed, Apr 2, 2014 at 11:03 AM, Rich
Megginson <span dir="ltr"><<a moz-do-not-send="true"
href="mailto:rmeggins@redhat.com" target="_blank">rmeggins@redhat.com</a>></span>
wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0
.8ex;border-left:1px #ccc solid;padding-left:1ex">
<div text="#000000" bgcolor="#FFFFFF">
<div class="">
<div>On 04/02/2014 08:59 AM, Nevada Sanchez wrote:<br>
</div>
<blockquote type="cite">
<div dir="ltr">That's what it looks like. However,
because the installer says it failed at that step,
it doesn't do the rest, so I end up with a partially
configured server (doesn't do any of the IPA things
that it should). Maybe I could get by with a patch
that would force it to continue beyond that step
even when it thinks it fails, so I could end up with
a usable server.
<div> <br>
</div>
<div>Also, how would I go about checking if there
were an SSL problem? I know, for example, that
ldapsearch on using ldaps from each direction
works.</div>
</div>
</blockquote>
<br>
</div>
From hostA:<br>
<br>
# LDAPTLS_CACERTDIR=/etc/dirsrv/slapd-DOMAIN-COM
ldapsearch -xLLLZZ -h fqdn.of.hostb -s base -b ""
'objectclass=*' vendorVersion
<div>
<div class="h5"><br>
<br>
<br>
<br>
<blockquote type="cite">
<div dir="ltr">
<div><br>
</div>
<div>Thanks!</div>
</div>
<div class="gmail_extra"> <br>
<br>
<div class="gmail_quote">On Wed, Apr 2, 2014 at
9:46 AM, Rich Megginson <span dir="ltr"><<a
moz-do-not-send="true"
href="mailto:rmeggins@redhat.com"
target="_blank">rmeggins@redhat.com</a>></span>
wrote:<br>
<blockquote class="gmail_quote" style="margin:0
0 0 .8ex;border-left:1px #ccc
solid;padding-left:1ex">
<div text="#000000" bgcolor="#FFFFFF">
<div>
<div>
<div>On 04/01/2014 07:52 PM, Nevada
Sanchez wrote:<br>
</div>
<blockquote type="cite">
<div dir="ltr">The access log is
summed up below. I looked into the
ipa_lockout errors. They had to do
with Kerberos not being set up yet.
It shouldn't be, I imagine, but I
set up the Kerberos conf anyway and
got that error to go away--it didn't
fix anything, unfortunately.
<div> <br>
</div>
<div>==============================================</div>
<div>
<div>[01/Apr/2014:21:23:29 +0000]
conn=1 fd=64 slot=64 connection
from ::1 to ::1</div>
<div>[01/Apr/2014:21:23:29 +0000]
conn=1 op=-1 fd=64 closed - B1</div>
<div>[01/Apr/2014:21:23:29 +0000]
conn=2 fd=64 slot=64 connection
from 10.0.3.15 to 10.0.3.15</div>
<div>[01/Apr/2014:21:23:29 +0000]
conn=2 op=0 BIND
dn="cn=directory manager"
method=128 version=3</div>
<div>[01/Apr/2014:21:23:29 +0000]
conn=2 op=0 RESULT err=0 tag=97
nentries=0 etime=0
dn="cn=directory manager"</div>
<div>[01/Apr/2014:21:23:29 +0000]
conn=3 fd=65 slot=65 connection
from 10.0.3.15 to 10.0.3.15</div>
<div>[01/Apr/2014:21:23:29 +0000]
conn=3 op=0 BIND
dn="cn=Directory Manager"
method=128 version=3</div>
<div>[01/Apr/2014:21:23:29 +0000]
conn=3 op=0 RESULT err=0 tag=97
nentries=0 etime=0
dn="cn=directory manager"</div>
<div>[01/Apr/2014:21:23:29 +0000]
conn=3 op=1 MOD dn="cn=MemberOf
Plugin,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:29 +0000]
conn=3 op=2 UNBIND</div>
<div>[01/Apr/2014:21:23:29 +0000]
conn=3 op=2 fd=65 closed - U1</div>
<div>[01/Apr/2014:21:23:29 +0000]
conn=3 op=1 RESULT err=0 tag=103
nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:29 +0000]
conn=4 fd=66 slot=66 connection
from 10.0.3.15 to 10.0.3.15</div>
<div>[01/Apr/2014:21:23:29 +0000]
conn=4 op=0 BIND
dn="cn=Directory Manager"
method=128 version=3</div>
<div>[01/Apr/2014:21:23:29 +0000]
conn=4 op=1 ADD
dn="cn=ipa-winsync,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:29 +0000]
conn=4 op=0 RESULT err=0 tag=97
nentries=0 etime=0
dn="cn=directory manager"</div>
<div>[01/Apr/2014:21:23:29 +0000]
conn=4 op=2 UNBIND</div>
<div>[01/Apr/2014:21:23:29 +0000]
conn=4 op=2 fd=66 closed - U1</div>
<div>[01/Apr/2014:21:23:29 +0000]
conn=4 op=1 RESULT err=0 tag=105
nentries=0 etime=0</div>
<div> [01/Apr/2014:21:23:30 +0000]
conn=5 fd=65 slot=65 connection
from 10.0.3.15 to 10.0.3.15</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=5 op=0 BIND
dn="cn=Directory Manager"
method=128 version=3</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=5 op=0 RESULT err=0 tag=97
nentries=0 etime=0
dn="cn=directory manager"</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=5 op=1 ADD dn="cn=IPA
Version
Replication,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=5 op=2 UNBIND</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=5 op=2 fd=65 closed - U1</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=5 op=1 RESULT err=0 tag=105
nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=6 fd=66 slot=66 connection
from 10.0.3.15 to 10.0.3.15</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=6 op=0 BIND
dn="cn=Directory Manager"
method=128 version=3</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=6 op=0 RESULT err=0 tag=97
nentries=0 etime=0
dn="cn=directory manager"</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=6 op=1 ADD
dn="cn=ipa_enrollment_extop,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=6 op=2 UNBIND</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=6 op=2 fd=66 closed - U1</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=6 op=1 RESULT err=0 tag=105
nentries=0 etime=0</div>
<div> [01/Apr/2014:21:23:30 +0000]
conn=7 fd=65 slot=65 connection
from 10.0.3.15 to 10.0.3.15</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=7 op=0 BIND
dn="cn=Directory Manager"
method=128 version=3</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=7 op=0 RESULT err=0 tag=97
nentries=0 etime=0
dn="cn=directory manager"</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=7 op=1 MOD dn="cn=config"</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=7 op=2 UNBIND</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=7 op=2 fd=65 closed - U1</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=7 op=1 RESULT err=0 tag=103
nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=8 fd=66 slot=66 connection
from 10.0.3.15 to 10.0.3.15</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=8 op=0 BIND
dn="cn=Directory Manager"
method=128 version=3</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=8 op=0 RESULT err=0 tag=97
nentries=0 etime=0
dn="cn=directory manager"</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=8 op=1 ADD
dn="cn=krbPrincipalName
uniqueness,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=8 op=2 ADD
dn="cn=krbCanonicalName
uniqueness,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=8 op=1 RESULT err=0 tag=105
nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=8 op=3 ADD dn="cn=netgroup
uniqueness,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=8 op=2 RESULT err=0 tag=105
nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=8 op=4 ADD
dn="cn=ipaUniqueID
uniqueness,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=8 op=3 RESULT err=0 tag=105
nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=8 op=5 ADD dn="cn=sudorule
name
uniqueness,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=8 op=4 RESULT err=0 tag=105
nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=8 op=5 RESULT err=0 tag=105
nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=8 op=6 UNBIND</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=8 op=6 fd=66 closed - U1</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=9 fd=65 slot=65 connection
from 10.0.3.15 to 10.0.3.15</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=9 op=0 BIND
dn="cn=Directory Manager"
method=128 version=3</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=9 op=0 RESULT err=0 tag=97
nentries=0 etime=0
dn="cn=directory manager"</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=9 op=1 ADD dn="cn=IPA
UUID,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=9 op=2 UNBIND</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=9 op=2 fd=65 closed - U1</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=9 op=1 RESULT err=0 tag=105
nentries=0 etime=0</div>
<div> [01/Apr/2014:21:23:30 +0000]
conn=10 fd=66 slot=66 connection
from 10.0.3.15 to 10.0.3.15</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=10 op=0 BIND
dn="cn=Directory Manager"
method=128 version=3</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=10 op=0 RESULT err=0 tag=97
nentries=0 etime=0
dn="cn=directory manager"</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=10 op=1 ADD dn="cn=IPA
Unique IDs,cn=IPA
UUID,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=10 op=2 UNBIND</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=10 op=2 fd=66 closed - U1</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=10 op=1 RESULT err=0
tag=105 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=11 fd=65 slot=65 connection
from 10.0.3.15 to 10.0.3.15</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=11 op=0 BIND
dn="cn=Directory Manager"
method=128 version=3</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=11 op=0 RESULT err=0 tag=97
nentries=0 etime=0
dn="cn=directory manager"</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=11 op=1 ADD dn="cn=IPA
MODRDN,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=11 op=2 UNBIND</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=11 op=2 fd=65 closed - U1</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=11 op=1 RESULT err=0
tag=105 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=12 fd=66 slot=66 connection
from 10.0.3.15 to 10.0.3.15</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=12 op=0 BIND
dn="cn=Directory Manager"
method=128 version=3</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=12 op=0 RESULT err=0 tag=97
nentries=0 etime=0
dn="cn=directory manager"</div>
<div>[01/Apr/2014:21:23:30 +0000]
conn=12 op=1 ADD dn="cn=Kerberos
Principal Name,cn=IPA
MODRDN,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=12 op=2 UNBIND</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=12 op=2 fd=66 closed - U1</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=12 op=1 RESULT err=0
tag=105 nentries=0 etime=1</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=13 fd=65 slot=65 connection
from 10.0.3.15 to 10.0.3.15</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=13 op=0 BIND
dn="cn=Directory Manager"
method=128 version=3</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=13 op=0 RESULT err=0 tag=97
nentries=0 etime=0
dn="cn=directory manager"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=13 op=1 ADD dn="cn=IPA
DNS,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=13 op=2 UNBIND</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=13 op=2 fd=65 closed - U1</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=13 op=1 RESULT err=0
tag=105 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=14 fd=66 slot=66 connection
from 10.0.3.15 to 10.0.3.15</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=14 op=0 BIND
dn="cn=Directory Manager"
method=128 version=3</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=14 op=0 RESULT err=0 tag=97
nentries=0 etime=0
dn="cn=directory manager"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=14 op=1 MOD dn="cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=14 op=2 MOD dn="cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=14 op=1 RESULT err=0
tag=103 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=14 op=3 MOD
dn="cn=USN,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=14 op=2 RESULT err=0
tag=103 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=14 op=4 UNBIND</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=14 op=4 fd=66 closed - U1</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=14 op=3 RESULT err=0
tag=103 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=15 fd=65 slot=65 connection
from 10.0.3.15 to 10.0.3.15</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=15 op=0 BIND
dn="cn=Directory Manager"
method=128 version=3</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=15 op=0 RESULT err=0 tag=97
nentries=0 etime=0
dn="cn=directory manager"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=15 op=1 ADD dn="cn=IPA
Lockout,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=15 op=2 UNBIND</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=15 op=2 fd=65 closed - U1</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=15 op=1 RESULT err=0
tag=105 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 fd=66 slot=66 connection
from 10.0.3.15 to 10.0.3.15</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=0 BIND
dn="cn=Directory Manager"
method=128 version=3</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=0 RESULT err=0 tag=97
nentries=0 etime=0
dn="cn=directory manager"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=1 ADD
dn="cn=krbPrincipalName,cn=index,cn=userRoot,cn=ldbm
database,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=2 ADD
dn="cn=ou,cn=index,cn=userRoot,cn=ldbm
database,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=1 RESULT err=0
tag=105 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=3 ADD
dn="cn=carLicense,cn=index,cn=userRoot,cn=ldbm
database,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=2 RESULT err=0
tag=105 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=4 ADD
dn="cn=title,cn=index,cn=userRoot,cn=ldbm
database,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=3 RESULT err=0
tag=105 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=5 ADD
dn="cn=manager,cn=index,cn=userRoot,cn=ldbm
database,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=4 RESULT err=0
tag=105 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=6 ADD
dn="cn=secretary,cn=index,cn=userRoot,cn=ldbm
database,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=7 ADD
dn="cn=displayname,cn=index,cn=userRoot,cn=ldbm
database,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=6 RESULT err=0
tag=105 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=5 RESULT err=0
tag=105 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=8 MOD
dn="cn=uid,cn=index,cn=userRoot,cn=ldbm
database,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=9 ADD
dn="cn=uidnumber,cn=index,cn=userRoot,cn=ldbm
database,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=8 RESULT err=0
tag=103 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=7 RESULT err=0
tag=105 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=10 ADD
dn="cn=gidnumber,cn=index,cn=userRoot,cn=ldbm
database,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=9 RESULT err=0
tag=105 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=11 MOD
dn="cn=ntUniqueId,cn=index,cn=userRoot,cn=ldbm
database,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=10 RESULT err=0
tag=105 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=12 MOD
dn="cn=ntUserDomainId,cn=index,cn=userRoot,cn=ldbm
database,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=11 RESULT err=0
tag=103 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=13 ADD
dn="cn=fqdn,cn=index,cn=userRoot,cn=ldbm
database,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=12 RESULT err=0
tag=103 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=14 ADD
dn="cn=macAddress,cn=index,cn=userRoot,cn=ldbm
database,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=15 ADD
dn="cn=memberHost,cn=index,cn=userRoot,cn=ldbm
database,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=14 RESULT err=0
tag=105 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=13 RESULT err=0
tag=105 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=16 ADD
dn="cn=memberUser,cn=index,cn=userRoot,cn=ldbm
database,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=15 RESULT err=0
tag=105 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=16 RESULT err=0
tag=105 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=17 ADD
dn="cn=sourcehost,cn=index,cn=userRoot,cn=ldbm
database,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=17 RESULT err=0
tag=105 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=18 ADD
dn="cn=memberservice,cn=index,cn=userRoot,cn=ldbm
database,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=19 ADD
dn="cn=managedby,cn=index,cn=userRoot,cn=ldbm
database,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=18 RESULT err=0
tag=105 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=20 ADD
dn="cn=memberallowcmd,cn=index,cn=userRoot,cn=ldbm
database,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=19 RESULT err=0
tag=105 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=21 ADD
dn="cn=memberdenycmd,cn=index,cn=userRoot,cn=ldbm
database,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=21 RESULT err=0
tag=105 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=20 RESULT err=0
tag=105 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=22 ADD
dn="cn=ipasudorunas,cn=index,cn=userRoot,cn=ldbm
database,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=23 ADD
dn="cn=ipasudorunasgroup,cn=index,cn=userRoot,cn=ldbm
database,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=22 RESULT err=0
tag=105 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=24 ADD
dn="cn=automountkey,cn=index,cn=userRoot,cn=ldbm
database,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=24 RESULT err=0
tag=105 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=23 RESULT err=0
tag=105 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=25 ADD
dn="cn=ipakrbprincipalalias,cn=index,cn=userRoot,cn=ldbm
database,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=25 RESULT err=0
tag=105 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=26 ADD
dn="cn=ipauniqueid,cn=index,cn=userRoot,cn=ldbm
database,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=26 RESULT err=0
tag=105 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=27 UNBIND</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=16 op=27 fd=66 closed - U1</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=17 fd=65 slot=65 connection
from 10.0.3.15 to 10.0.3.15</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=17 op=0 BIND
dn="cn=Directory Manager"
method=128 version=3</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=17 op=0 RESULT err=0 tag=97
nentries=0 etime=0
dn="cn=directory manager"</div>
<div>[01/Apr/2014:21:23:31 +0000]
conn=17 op=1 MOD
dn="cn=referential integrity
postoperation,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:32 +0000]
conn=17 op=2 UNBIND</div>
<div>[01/Apr/2014:21:23:32 +0000]
conn=17 op=2 fd=65 closed - U1</div>
<div>[01/Apr/2014:21:23:32 +0000]
conn=17 op=1 RESULT err=0
tag=103 nentries=0 etime=1</div>
<div>[01/Apr/2014:21:23:42 +0000]
conn=18 fd=65 slot=65 connection
from 10.0.3.15 to 10.0.3.15</div>
<div>[01/Apr/2014:21:23:42 +0000]
conn=18 op=0 BIND
dn="cn=directory manager"
method=128 version=3</div>
<div>[01/Apr/2014:21:23:42 +0000]
conn=18 op=0 RESULT err=0 tag=97
nentries=0 etime=0
dn="cn=directory manager"</div>
<div>[01/Apr/2014:21:23:42 +0000]
conn=18 op=1 MOD
dn="cn=encryption,cn=config"</div>
<div>[01/Apr/2014:21:23:42 +0000]
conn=18 op=2 MOD dn="cn=config"</div>
<div>[01/Apr/2014:21:23:42 +0000]
conn=18 op=1 RESULT err=0
tag=103 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:42 +0000]
conn=18 op=3 SRCH
base="cn=schema" scope=0
filter="(objectClass=*)"
attrs="attributeTypes
objectClasses"</div>
<div>[01/Apr/2014:21:23:42 +0000]
conn=18 op=2 RESULT err=0
tag=103 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:42 +0000]
conn=18 op=3 RESULT err=0
tag=101 nentries=1 etime=0</div>
<div>[01/Apr/2014:21:23:43 +0000]
conn=18 op=4 ADD
dn="cn=RSA,cn=encryption,cn=config"</div>
<div>[01/Apr/2014:21:23:43 +0000]
conn=18 op=5 UNBIND</div>
<div>[01/Apr/2014:21:23:43 +0000]
conn=18 op=5 fd=65 closed - U1</div>
<div>[01/Apr/2014:21:23:43 +0000]
conn=18 op=4 RESULT err=0
tag=105 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:43 +0000]
conn=19 fd=66 slot=66 connection
from 10.0.3.15 to 10.0.3.15</div>
<div>[01/Apr/2014:21:23:43 +0000]
conn=19 op=0 BIND
dn="cn=Directory Manager"
method=128 version=3</div>
<div>[01/Apr/2014:21:23:43 +0000]
conn=19 op=1 ADD
dn="cn=root-autobind,cn=config"</div>
<div>[01/Apr/2014:21:23:43 +0000]
conn=19 op=2 MOD dn="cn=config"</div>
<div>[01/Apr/2014:21:23:43 +0000]
conn=19 op=1 RESULT err=0
tag=105 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:43 +0000]
conn=19 op=3 MOD dn="cn=config"</div>
<div>[01/Apr/2014:21:23:43 +0000]
conn=19 op=2 RESULT err=0
tag=103 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:43 +0000]
conn=19 op=0 RESULT err=0 tag=97
nentries=0 etime=0
dn="cn=directory manager"</div>
<div> [01/Apr/2014:21:23:43 +0000]
conn=19 op=4 UNBIND</div>
<div>[01/Apr/2014:21:23:43 +0000]
conn=19 op=4 fd=66 closed - U1</div>
<div>[01/Apr/2014:21:23:43 +0000]
conn=19 op=3 RESULT err=0
tag=103 nentries=0 etime=0</div>
<div> [01/Apr/2014:21:23:43 +0000]
conn=20 fd=65 slot=65 connection
from 10.0.3.15 to 10.0.3.15</div>
<div>[01/Apr/2014:21:23:43 +0000]
conn=20 op=0 BIND
dn="cn=Directory Manager"
method=128 version=3</div>
<div>[01/Apr/2014:21:23:43 +0000]
conn=20 op=0 RESULT err=0 tag=97
nentries=0 etime=0
dn="cn=directory manager"</div>
<div>[01/Apr/2014:21:23:43 +0000]
conn=20 op=1 MOD dn="cn=Managed
Entries,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:43 +0000]
conn=20 op=2 UNBIND</div>
<div>[01/Apr/2014:21:23:43 +0000]
conn=20 op=2 fd=65 closed - U1</div>
<div>[01/Apr/2014:21:23:43 +0000]
conn=20 op=1 RESULT err=0
tag=103 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:43 +0000]
conn=21 fd=66 slot=66 connection
from 10.0.3.15 to 10.0.3.15</div>
<div>[01/Apr/2014:21:23:43 +0000]
conn=21 op=0 BIND
dn="cn=Directory Manager"
method=128 version=3</div>
<div>[01/Apr/2014:21:23:43 +0000]
conn=21 op=0 RESULT err=0 tag=97
nentries=0 etime=0
dn="cn=directory manager"</div>
<div>[01/Apr/2014:21:23:43 +0000]
conn=21 op=1 MOD dn="cn=config"</div>
<div>[01/Apr/2014:21:23:43 +0000]
conn=21 op=2 UNBIND</div>
<div>[01/Apr/2014:21:23:43 +0000]
conn=21 op=2 fd=66 closed - U1</div>
<div>[01/Apr/2014:21:23:43 +0000]
conn=21 op=1 RESULT err=0
tag=103 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:46 +0000]
conn=1 fd=64 slot=64 connection
from ::1 to ::1</div>
<div>[01/Apr/2014:21:23:46 +0000]
conn=1 op=-1 fd=64 closed - B1</div>
<div>[01/Apr/2014:21:23:46 +0000]
conn=2 fd=64 slot=64 connection
from local to
/var/run/slapd-EXAMPLE-COM.socket</div>
<div>[01/Apr/2014:21:23:46 +0000]
conn=2 op=0 BIND
dn="cn=directory manager"
method=128 version=3</div>
<div>[01/Apr/2014:21:23:46 +0000]
conn=2 op=0 RESULT err=0 tag=97
nentries=0 etime=0
dn="cn=directory manager"</div>
<div>[01/Apr/2014:21:23:46 +0000]
conn=2 op=1 SRCH base="cn=IPA
Version
Replication,cn=plugins,cn=config"
scope=0 filter="(objectClass=*)"
attrs=ALL</div>
<div>[01/Apr/2014:21:23:46 +0000]
conn=2 op=1 RESULT err=0 tag=101
nentries=1 etime=0</div>
<div>[01/Apr/2014:21:23:46 +0000]
conn=2 op=2 SRCH
base="cn=schema" scope=0
filter="(objectClass=*)"
attrs="attributeTypes
objectClasses"</div>
<div>[01/Apr/2014:21:23:46 +0000]
conn=2 op=2 RESULT err=0 tag=101
nentries=1 etime=0</div>
<div>[01/Apr/2014:21:23:47 +0000]
conn=2 op=3 MOD dn="cn=IPA
Version
Replication,cn=plugins,cn=config"</div>
<div>[01/Apr/2014:21:23:47 +0000]
conn=2 op=4 UNBIND</div>
<div>[01/Apr/2014:21:23:47 +0000]
conn=2 op=4 fd=64 closed - U1</div>
<div>[01/Apr/2014:21:23:47 +0000]
conn=2 op=3 RESULT err=0 tag=103
nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:51 +0000]
conn=1 fd=64 slot=64 connection
from ::1 to ::1</div>
<div>[01/Apr/2014:21:23:51 +0000]
conn=2 fd=65 slot=65 SSL
connection from 10.0.3.15 to
10.0.3.15</div>
<div>[01/Apr/2014:21:23:51 +0000]
conn=1 op=-1 fd=64 closed - B1</div>
<div>[01/Apr/2014:21:23:51 +0000]
conn=2 SSL 256-bit AES</div>
<div>[01/Apr/2014:21:23:51 +0000]
conn=2 op=0 BIND
dn="cn=directory manager"
method=128 version=3</div>
<div>[01/Apr/2014:21:23:51 +0000]
conn=2 op=0 RESULT err=0 tag=97
nentries=0 etime=0
dn="cn=directory manager"</div>
<div>[01/Apr/2014:21:23:51 +0000]
conn=2 op=1 SRCH
base="cn=replica,cn=dc\3Dexample\2Cdc\3Dcom,cn=mapping
tree,cn=config" scope=0
filter="(objectClass=*)"
attrs=ALL</div>
<div>[01/Apr/2014:21:23:51 +0000]
conn=2 op=1 RESULT err=32
tag=101 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:52 +0000]
conn=2 op=2 SRCH
base="cn=schema" scope=0
filter="(objectClass=*)"
attrs="attributeTypes
objectClasses"</div>
<div>[01/Apr/2014:21:23:52 +0000]
conn=2 op=2 RESULT err=0 tag=101
nentries=1 etime=0</div>
<div>[01/Apr/2014:21:23:52 +0000]
conn=2 op=3 ADD
dn="cn=replication
manager,cn=config"</div>
<div>[01/Apr/2014:21:23:52 +0000]
conn=2 op=4 SRCH
base="cn=replica,cn=dc\3Dexample\2Cdc\3Dcom,cn=mapping
tree,cn=config" scope=0
filter="(objectClass=*)"
attrs=ALL</div>
<div>[01/Apr/2014:21:23:52 +0000]
conn=2 op=3 RESULT err=0 tag=105
nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:52 +0000]
conn=2 op=4 RESULT err=32
tag=101 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:52 +0000]
conn=2 op=5 ADD
dn="cn=replica,cn=dc\3Dexample\2Cdc\3Dcom,cn=mapping
tree,cn=config"</div>
<div>[01/Apr/2014:21:23:52 +0000]
conn=2 op=6 SRCH
base="cn=config,cn=ldbm
database,cn=plugins,cn=config"
scope=0 filter="(objectClass=*)"
attrs="nsslapd-directory"</div>
<div>[01/Apr/2014:21:23:52 +0000]
conn=2 op=6 RESULT err=0 tag=101
nentries=1 etime=0</div>
<div>[01/Apr/2014:21:23:52 +0000]
conn=2 op=7 ADD
dn="cn=changelog5,cn=config"</div>
<div>[01/Apr/2014:21:23:52 +0000]
conn=2 op=5 RESULT err=0 tag=105
nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:52 +0000]
conn=2 op=7 RESULT err=0 tag=105
nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:52 +0000]
conn=3 fd=64 slot=64 connection
from 10.0.3.4 to 10.0.3.15</div>
<div>[01/Apr/2014:21:23:52 +0000]
conn=3 op=0 EXT
oid="1.3.6.1.4.1.1466.20037"
name="startTLS"</div>
<div> [01/Apr/2014:21:23:52 +0000]
conn=3 op=0 RESULT err=0 tag=120
nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=3 SSL 256-bit AES</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=3 op=1 BIND
dn="cn=replication
manager,cn=config" method=128
version=3</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=3 op=1 RESULT err=0 tag=97
nentries=0 etime=1
dn="cn=replication
manager,cn=config"</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=3 op=2 SRCH base="" scope=0
filter="(objectClass=*)"
attrs="supportedControl
supportedExtension"</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=3 op=2 RESULT err=0 tag=101
nentries=1 etime=0</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=3 op=3 SRCH base="" scope=0
filter="(objectClass=*)"
attrs="supportedControl
supportedExtension"</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=3 op=3 RESULT err=0 tag=101
nentries=1 etime=0</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=3 op=4 EXT
oid="2.16.840.1.113730.3.5.12"
name="replication-multimaster-extop"</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=2 op=8 SRCH base="cn=<a
moz-do-not-send="true"
href="http://meToipa.example.com"
target="_blank">meToipa.example.com</a>,cn=replica,cn=dc\3Dexample\2Cdc\3Dcom,cn=mapping
tree,cn=config" scope=0
filter="(objectClass=*)"
attrs=ALL</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=2 op=8 RESULT err=32
tag=101 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=2 op=9 ADD dn="cn=<a
moz-do-not-send="true"
href="http://meToipa.example.com"
target="_blank">meToipa.example.com</a>,cn=replica,cn=dc\3Dexample\2Cdc\3Dcom,cn=mapping
tree,cn=config"</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=3 op=4 RESULT err=0 tag=120
nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=2 op=10 MOD dn="cn=<a
moz-do-not-send="true"
href="http://meToipa.example.com"
target="_blank">meToipa.example.com</a>,cn=replica,cn=dc\3Dexample\2Cdc\3Dcom,cn=mapping
tree,cn=config"</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=2 op=9 RESULT err=0 tag=105
nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=3 op=5 SRCH
base="cn=schema" scope=0
filter="(objectClass=*)"
attrs="nsSchemaCSN"</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=2 op=11 SRCH base="cn=<a
moz-do-not-send="true"
href="http://meToipa.example.com"
target="_blank">meToipa.example.com</a>,cn=replica,cn=dc\3Dexample\2Cdc\3Dcom,cn=mapping
tree,cn=config" scope=0
filter="(objectClass=*)"
attrs=ALL</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=2 op=11 RESULT err=0
tag=101 nentries=1 etime=0</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=2 op=10 RESULT err=0
tag=103 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=3 op=5 RESULT err=0 tag=101
nentries=1 etime=0</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=3 op=6 MOD dn="cn=schema"</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=3 op=6 RESULT err=0 tag=103
nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=3 op=7 EXT
oid="2.16.840.1.113730.3.5.5"
name="Netscape Replication End
Session"</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=3 op=7 RESULT err=0 tag=120
nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=3 op=8 UNBIND</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=3 op=8 fd=64 closed - U1</div>
<div> [01/Apr/2014:21:23:53 +0000]
conn=4 fd=66 slot=66 connection
from 10.0.3.4 to 10.0.3.15</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=4 op=0 EXT
oid="1.3.6.1.4.1.1466.20037"
name="startTLS"</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=4 op=0 RESULT err=0 tag=120
nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=4 SSL 256-bit AES</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=4 op=1 BIND
dn="cn=replication
manager,cn=config" method=128
version=3</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=4 op=1 RESULT err=0 tag=97
nentries=0 etime=0
dn="cn=replication
manager,cn=config"</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=4 op=2 SRCH base="" scope=0
filter="(objectClass=*)"
attrs="supportedControl
supportedExtension"</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=4 op=2 RESULT err=0 tag=101
nentries=1 etime=0</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=4 op=3 SRCH base="" scope=0
filter="(objectClass=*)"
attrs="supportedControl
supportedExtension"</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=4 op=3 RESULT err=0 tag=101
nentries=1 etime=0</div>
<div>[01/Apr/2014:21:23:53 +0000]
conn=4 op=4 EXT
oid="2.16.840.1.113730.3.5.12"
name="replication-multimaster-extop"</div>
<div>[01/Apr/2014:21:23:54 +0000]
conn=4 op=4 RESULT err=0 tag=120
nentries=0 etime=1</div>
<div>[01/Apr/2014:21:23:54 +0000]
conn=4 op=5 SRCH
base="cn=schema" scope=0
filter="(objectClass=*)"
attrs="nsSchemaCSN"</div>
<div>[01/Apr/2014:21:23:54 +0000]
conn=4 op=5 RESULT err=0 tag=101
nentries=1 etime=0</div>
<div>[01/Apr/2014:21:23:54 +0000]
conn=4 op=6 EXT
oid="2.16.840.1.113730.3.5.6"
name="Netscape Replication Total
Update Entry"</div>
<div>.</div>
<div>.</div>
<div>.</div>
<div>[01/Apr/2014:21:23:55 +0000]
conn=4 op=458 RESULT err=0
tag=120 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:57 +0000]
conn=4 op=459 EXT
oid="2.16.840.1.113730.3.5.5"
name="Netscape Replication End
Session"</div>
<div>[01/Apr/2014:21:23:57 +0000]
conn=4 op=459 RESULT err=0
tag=120 nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:58 +0000]
conn=4 op=460 UNBIND</div>
<div>[01/Apr/2014:21:23:58 +0000]
conn=4 op=460 fd=66 closed - U1</div>
<div>[01/Apr/2014:21:23:58 +0000]
conn=5 fd=64 slot=64 connection
from 10.0.3.4 to 10.0.3.15</div>
<div>[01/Apr/2014:21:23:58 +0000]
conn=5 op=0 EXT
oid="1.3.6.1.4.1.1466.20037"
name="startTLS"</div>
<div>[01/Apr/2014:21:23:58 +0000]
conn=5 op=0 RESULT err=0 tag=120
nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:58 +0000]
conn=5 SSL 256-bit AES</div>
<div>[01/Apr/2014:21:23:58 +0000]
conn=5 op=1 BIND
dn="cn=replication
manager,cn=config" method=128
version=3</div>
<div>[01/Apr/2014:21:23:58 +0000]
conn=5 op=1 RESULT err=0 tag=97
nentries=0 etime=0
dn="cn=replication
manager,cn=config"</div>
<div>[01/Apr/2014:21:23:58 +0000]
conn=5 op=2 SRCH base="" scope=0
filter="(objectClass=*)"
attrs="supportedControl
supportedExtension"</div>
<div>[01/Apr/2014:21:23:58 +0000]
conn=5 op=2 RESULT err=0 tag=101
nentries=1 etime=0</div>
<div>[01/Apr/2014:21:23:58 +0000]
conn=5 op=3 SRCH base="" scope=0
filter="(objectClass=*)"
attrs="supportedControl
supportedExtension"</div>
<div>[01/Apr/2014:21:23:58 +0000]
conn=5 op=3 RESULT err=0 tag=101
nentries=1 etime=0</div>
<div>[01/Apr/2014:21:23:58 +0000]
conn=5 op=4 EXT
oid="2.16.840.1.113730.3.5.12"
name="replication-multimaster-extop"</div>
<div>[01/Apr/2014:21:23:58 +0000]
conn=5 op=4 RESULT err=0 tag=120
nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:58 +0000]
conn=5 op=5 SRCH
base="cn=schema" scope=0
filter="(objectClass=*)"
attrs="nsSchemaCSN"</div>
<div>[01/Apr/2014:21:23:58 +0000]
conn=5 op=5 RESULT err=0 tag=101
nentries=1 etime=0</div>
<div>[01/Apr/2014:21:23:58 +0000]
conn=5 op=6 SRCH
base="cn=replica,cn=dc\3Dexample\2Cdc\3Dcom,cn=mapping
tree,cn=config" scope=0
filter="(objectClass=*)"
attrs="nsDS5ReplicaId"</div>
<div>[01/Apr/2014:21:23:58 +0000]
conn=5 op=6 RESULT err=0 tag=101
nentries=1 etime=0</div>
<div>[01/Apr/2014:21:23:58 +0000]
conn=5 op=7 EXT
oid="2.16.840.1.113730.3.5.5"
name="Netscape Replication End
Session"</div>
<div>[01/Apr/2014:21:23:58 +0000]
conn=5 op=7 RESULT err=0 tag=120
nentries=0 etime=0</div>
<div>[01/Apr/2014:21:23:59 +0000]
conn=2 op=12 UNBIND</div>
<div>[01/Apr/2014:21:23:59 +0000]
conn=2 op=12 fd=65 closed - U1</div>
</div>
</div>
</blockquote>
<br>
</div>
</div>
This shows replication is working - that is,
this server is able to act as a consumer for
replication from 10.0.3.4
<div><br>
<br>
<blockquote type="cite">
<div dir="ltr">
<div><br>
</div>
</div>
<div class="gmail_extra"><br>
<br>
<div class="gmail_quote">On Tue, Apr
1, 2014 at 5:41 PM, Rob Crittenden <span
dir="ltr"><<a
moz-do-not-send="true"
href="mailto:rcritten@redhat.com"
target="_blank">rcritten@redhat.com</a>></span>
wrote:<br>
<blockquote class="gmail_quote"
style="margin:0 0 0
.8ex;border-left:1px #ccc
solid;padding-left:1ex">
<div>Rich Megginson wrote:<br>
<blockquote class="gmail_quote"
style="margin:0 0 0
.8ex;border-left:1px #ccc
solid;padding-left:1ex"> On
04/01/2014 03:28 PM, Nevada
Sanchez wrote:<br>
<blockquote
class="gmail_quote"
style="margin:0 0 0
.8ex;border-left:1px #ccc
solid;padding-left:1ex">
Okay, I just tried doing
this on a FRESH fedora 19
image (applied all<br>
updates, installed freeipa,
made a new replica file for
the new test<br>
server, and went state to
ipa-replica-insntall). Exact
same errors.<br>
Anything else I should try?<br>
</blockquote>
<br>
I don't know.<br>
<br>
Does anyone on the IPA team
know what the ipa_lockout
errors are about,<br>
and if they would cause
replication not to work?<br>
<br>
</blockquote>
<br>
</div>
I suspect it is a red herring. The
error is not found, so it is
probably that the entry doesn't
exist yet. This is replication for
the CA anyway.<br>
<br>
I'd be curious what the access and
error logs on the existing side
looks like. It may be an SSL trust
problem, for example.<span><font
color="#888888"><br>
<br>
rob<br>
<br>
<br>
<br>
</font></span></blockquote>
</div>
<br>
</div>
</blockquote>
<br>
</div>
</div>
</blockquote>
</div>
<br>
</div>
</blockquote>
<br>
</div>
</div>
</div>
</blockquote>
</div>
<br>
</div>
</blockquote>
<br>
</body>
</html>