cd /<server-root>/alias cat > slapd-`hostname`-pin.txt << EOF Internal (Software) Token:SomeToken EOF
AuthBasicProvider ldap AuthLDAPUrl "ldap://server/ou=people,dc=org?uid" AuthzLDAPAuthoritative off Require valid-user AuthzSVNAccessFile /etc/svn.acl
Server: ldap.nyu.edu
Search Base: o=New York University, st=New York, c=US
Port: 389
Scope: Subtree
http://docs.sun.com/source/816-6698-10/indexing.html
http://docs.sun.com/source/816-6697-10/indexing.html
http://docs.sun.com/source/816-6698-10/replicat.html
The following is from the Sun ONE Directory documentation. Syntax examples are below as well.
Sun ONE Directory Server 5.2 provides replication monitoring tools that allow you to monitor replication between servers. B eing able to monitor replication activity assists in identifying the causes of replication problems and troubleshooting. All of the Directory Server replication monitoring tools can be used when LDAPS is turned on.
The three replication monitoring tools are:
• insync
• entrycmp
• repldisc
For more information regarding these replication monitoring tools, refer to the Replication Monitoring Tools section of the Sun ONE Directory Server Reference Manual and for more information on the monitoring possibilities afforded to you by certain replication attributes, see the replication attributes in the Core Server Configuration Attributes chapter of the Sun ONE Directory Server Reference Manual.
entrycmp
The entrycmp tool compares the same entry on two or more different servers. An entry is retrieved from the master and the entry’s nsuniqueid is used to retrieve the same entry from a specified consumer. All the attributes and values of the two entries are compared. If they are identical, the entries are considered to be the same.
cd /shared/bin ./entrycmp -s "cn=Directory Manager:PASSWORD@localhost:389" -c "cn=Directory Manager:PASSWORD@slave:389" "ou=people,dc=yada,dc=edu"
insync
The insync tool indicates the synchronization state between a master replica and one or more consumer replicas. insync compares the RUVs of replicas and displays the time difference or delay (in seconds) between the servers. Requesting the date of the last change and restricting the output data to the DN o=example.com:
cd /Sun/shared/bin ./insync -s "cn=Directory Manager:PASSWORD@localhost:389"
If you bump into the following message on your box.
Checking configuration files for slapd: bdb_db_open: unclean shutdown detected; attempting recovery. bdb_db_open: Recovery skipped in read-only mode. Run manual recovery if errors are encountered.
Change the ownership of /var/lib/ldap/DB_CONFIG to be owned by the user ldap and group ldap, then restart ldap.
chown ldap:ldap /var/lib/ldap/DB_CONFIG service ldap restart
If you do have a issue with your database, you can try to repair it.
/usr/sbin/slapd_db_recover -v -h /var/lib/ldap
