Daniel
2009-Nov-25 15:51 UTC
[389-users] Multi master replication - "Invalid syntax" error.
Hi, I need a helping hand from some experienced 389-ds admin.
I have built two LDAPs based on CentOS 5.3 and Fedora directory server.
ldap1 - is the production server which is running a few months. all of
the data are placed there.
ldap2 - is the clean install of CentOS 5.3 and 389-ds, identical to
ldap1, but with no data at all.
My point is to replicate present ldap1 data in to the new ldap2 server.
I went through the documentation here
http://directory.fedoraproject.org/wiki/Howto:MultiMasterReplication and
everything seems to be OK
Replication agreements are created, when I display them I get the
following output
replication agreements from ldap1.mydomain.com (389)
->ldap2.mydomain.com (389)
replication agreements from ldap2.mydomain.com (389)
->ldap1.mydomaincom (389)
...but when I perform the ldapsearch for some certain records - ldap2
won''t find anything.
So I checked the ldap1 error log and found this
25/Nov/2009:13:08:40 +0100] NSMMReplicationPlugin - agmt_delete: begin
[25/Nov/2009:13:08:48 +0100] NSMMReplicationPlugin -
agmt="cn="Replication to ldap2.mydomain.com"" (ldap2:389):
Schema
replication update failed: Invalidsyntax
[25/Nov/2009:13:08:48 +0100] NSMMReplicationPlugin -
agmt="cn="Replication to ldap2.mydomain.com"" (ldap2:389):
Warning:
unable to replicate schema: rc=1
[25/Nov/2009:13:08:51 +0100] NSMMReplicationPlugin -
agmt="cn="Replication to ldap2.mydomain.com"" (ldap2:389):
Schema
replication update failed: Invalid syntax
[25/Nov/2009:13:08:51 +0100] NSMMReplicationPlugin - Warning: unable to
replicate schema to host ldap2.mydomain.com, port 389. Continuing with
total update session.
[25/Nov/2009:13:08:51 +0100] NSMMReplicationPlugin - Beginning total
update of replica "agmt="cn="Replication to
ldap2.mydomain.com""
(ldap2:389)".
[25/Nov/2009:13:08:54 +0100] NSMMReplicationPlugin - Finished total
update of replica "agmt="cn="Replication to
ldap2.mydomain.com""
(ldap2:389)". Sent 107 entries.
Can you please explain to me what does it mean "Invalid syntax"?
I googled but no useful information were found.
So if someone knows what to do for solution I would greatly appreciate
the help.
Thank you very much.
~ Daniel.
Rich Megginson
2009-Nov-25 16:21 UTC
Re: [389-users] Multi master replication - "Invalid syntax" error.
Daniel wrote:> Hi, I need a helping hand from some experienced 389-ds admin. > > I have built two LDAPs based on CentOS 5.3 and Fedora directory server. > > ldap1 - is the production server which is running a few months. all of > the data are placed there. >What version? rpm -qi 389-ds-base (or fedora-ds-base if still using fedora-ds)> ldap2 - is the clean install of CentOS 5.3 and 389-ds, identical to > ldap1, but with no data at all. >What version? rpm -qi 389-ds-base The schema and syntax checking have been improved in 389 1.2.1 and later. Do you have any custom schema?> My point is to replicate present ldap1 data in to the new ldap2 server. > > I went through the documentation here > http://directory.fedoraproject.org/wiki/Howto:MultiMasterReplication and > everything seems to be OK > Replication agreements are created, when I display them I get the > following output > > replication agreements from ldap1.mydomain.com (389) > ->ldap2.mydomain.com (389) > > replication agreements from ldap2.mydomain.com (389) > ->ldap1.mydomaincom (389) > > ...but when I perform the ldapsearch for some certain records - ldap2 > won''t find anything. > > So I checked the ldap1 error log and found this > > 25/Nov/2009:13:08:40 +0100] NSMMReplicationPlugin - agmt_delete: begin > [25/Nov/2009:13:08:48 +0100] NSMMReplicationPlugin - > agmt="cn="Replication to ldap2.mydomain.com"" (ldap2:389): Schema > replication update failed: Invalidsyntax > [25/Nov/2009:13:08:48 +0100] NSMMReplicationPlugin - > agmt="cn="Replication to ldap2.mydomain.com"" (ldap2:389): Warning: > unable to replicate schema: rc=1 > [25/Nov/2009:13:08:51 +0100] NSMMReplicationPlugin - > agmt="cn="Replication to ldap2.mydomain.com"" (ldap2:389): Schema > replication update failed: Invalid syntax > [25/Nov/2009:13:08:51 +0100] NSMMReplicationPlugin - Warning: unable to > replicate schema to host ldap2.mydomain.com, port 389. Continuing with > total update session. > [25/Nov/2009:13:08:51 +0100] NSMMReplicationPlugin - Beginning total > update of replica "agmt="cn="Replication to ldap2.mydomain.com"" > (ldap2:389)". > [25/Nov/2009:13:08:54 +0100] NSMMReplicationPlugin - Finished total > update of replica "agmt="cn="Replication to ldap2.mydomain.com"" > (ldap2:389)". Sent 107 entries. > > Can you please explain to me what does it mean "Invalid syntax"? > I googled but no useful information were found. > > So if someone knows what to do for solution I would greatly appreciate > the help. > > Thank you very much. > > ~ Daniel. > > -- > 389 users mailing list > 389-users@redhat.com > https://www.redhat.com/mailman/listinfo/fedora-directory-users >
Daniel
2009-Nov-25 17:45 UTC
Re: [389-users] Multi master replication - "Invalid syntax" error.
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta content="text/html;charset=ISO-8859-1"
http-equiv="Content-Type">
<title></title>
</head>
<body bgcolor="#ffffff" text="#000000">
Hi Rich,<br>
<br>
very good point, I just discovered a very important difference.<br>
<br>
ldap1 - rpm -qi 389-ds-base gives - package "389-ds-base is not
installed" - <br>
<br>
unlike of ldap2 which states the following output:<br>
<br>
Name :
389-ds-base
Relocations: (not
relocatable)<br>
Version :
1.2.2
Vendor: (none)<br>
Release :
1.el5
Build Date: Tue 25 Aug 2009
10:55:38 PM CEST<br>
Install Date: Sat 07 Nov 2009 09:33:41 PM
CET Build Host:
localhost<br>
Group : System
Environment/Daemons Source RPM:
389-ds-base-1.2.2-1.el5.src.rpm<br>
Size :
5236534
License: GPLv2 with
exceptions<br>
Signature : DSA/SHA1, Wed 26 Aug 2009 04:15:41 PM CEST, Key
ID
0db66119a7b02652<br>
URL
: <a class="moz-txt-link-freetext"
href="http://port389.org/">http://port389.org/</a><br>
Summary : 389 Directory Server
(base)<br>
Description :<br>
389 Directory Server is an LDAPv3 compliant server. The base package
includes<br>
the LDAP server and command line utilities for server administration.<br>
<br>
ldap1 is the machine I have taken after someone and I was told that
it''s the 389 dirserver.<br>
<br>
When I want an information about package installed on ldap1 I have to
write: <br>
<br>
rpm -qi fedora-ds<br>
<br>
with this output:<br>
<br>
Name :
fedora-ds
Relocations: (not
relocatable)<br>
Version :
1.1.3
Vendor: (none)<br>
Release :
1.fc6
Build Date: Wed 01 Apr 2009
09:15:05 PM CEST<br>
Install Date: Sat 11 Apr 2009 11:01:52 PM
CEST Build Host:
localhost<br>
Group : System
Environment/Daemons Source RPM:
fedora-ds-1.1.3-1.fc6.src.rpm<br>
Size :
12279
License: GPLv2<br>
Signature : DSA/SHA1, Thu 02 Apr 2009 08:57:18 PM CEST, Key
ID
0db66119a7b02652<br>
URL
: <a class="moz-txt-link-freetext"
href="http://directory.fedoraproject.org/">http://directory.fedoraproject.org/</a><br>
Summary : Red Hat Directory,
Administration, and Console Suite<br>
Description :<br>
The Red Hat Directory Server, Administration Server, and Console Suite
provide<br>
the LDAPv3 server, the httpd daemon used to administer the server, and
the<br>
console GUI application used for server and user/group administration.<br>
<br>
Do you think this could be the part of the reason?<br>
<br>
Rich Megginson wrote:
<blockquote cite="mid:4B0D5978.6060601@redhat.com"
type="cite">Daniel
wrote:
<br>
<blockquote type="cite">Hi, I need a helping hand from some
experienced 389-ds admin.
<br>
<br>
I have built two LDAPs based on CentOS 5.3 and Fedora directory server.
<br>
<br>
ldap1 - is the production server which is running a few months. all of
<br>
the data are placed there.
<br>
</blockquote>
What version? rpm -qi 389-ds-base (or fedora-ds-base if still using
fedora-ds)
<br>
<blockquote type="cite">ldap2 - is the clean install of CentOS
5.3
and 389-ds, identical to
<br>
ldap1, but with no data at all.
<br>
</blockquote>
What version? rpm -qi 389-ds-base
<br>
<br>
The schema and syntax checking have been improved in 389 1.2.1 and
later. Do you have any custom schema?
<br>
<blockquote type="cite">My point is to replicate present ldap1
data
in to the new ldap2 server.
<br>
<br>
I went through the documentation here
<br>
<a class="moz-txt-link-freetext"
href="http://directory.fedoraproject.org/wiki/Howto:MultiMasterReplication">http://directory.fedoraproject.org/wiki/Howto:MultiMasterReplication</a>
and
<br>
everything seems to be OK
<br>
Replication agreements are created, when I display them I get the
<br>
following output
<br>
<br>
replication agreements from ldap1.mydomain.com (389)
<br>
->ldap2.mydomain.com (389)
<br>
<br>
replication agreements from ldap2.mydomain.com (389)
<br>
->ldap1.mydomaincom (389)
<br>
<br>
...but when I perform the ldapsearch for some certain records - ldap2
<br>
won''t find anything.
<br>
<br>
So I checked the ldap1 error log and found this
<br>
<br>
25/Nov/2009:13:08:40 +0100] NSMMReplicationPlugin - agmt_delete: begin
<br>
[25/Nov/2009:13:08:48 +0100] NSMMReplicationPlugin -
<br>
agmt="cn="Replication to ldap2.mydomain.com"" (ldap2:389):
Schema
<br>
replication update failed: Invalidsyntax
<br>
[25/Nov/2009:13:08:48 +0100] NSMMReplicationPlugin -
<br>
agmt="cn="Replication to ldap2.mydomain.com"" (ldap2:389):
Warning:
<br>
unable to replicate schema: rc=1
<br>
[25/Nov/2009:13:08:51 +0100] NSMMReplicationPlugin -
<br>
agmt="cn="Replication to ldap2.mydomain.com"" (ldap2:389):
Schema
<br>
replication update failed: Invalid syntax
<br>
[25/Nov/2009:13:08:51 +0100] NSMMReplicationPlugin - Warning: unable to
<br>
replicate schema to host ldap2.mydomain.com, port 389. Continuing with
<br>
total update session.
<br>
[25/Nov/2009:13:08:51 +0100] NSMMReplicationPlugin - Beginning total
<br>
update of replica "agmt="cn="Replication to
ldap2.mydomain.com""
<br>
(ldap2:389)".
<br>
[25/Nov/2009:13:08:54 +0100] NSMMReplicationPlugin - Finished total
<br>
update of replica "agmt="cn="Replication to
ldap2.mydomain.com""
<br>
(ldap2:389)". Sent 107 entries.
<br>
<br>
Can you please explain to me what does it mean "Invalid syntax"?
<br>
I googled but no useful information were found.
<br>
<br>
So if someone knows what to do for solution I would greatly appreciate
<br>
the help.
<br>
<br>
Thank you very much.
<br>
<br>
~ Daniel.
<br>
<br>
--
<br>
389 users mailing list
<br>
<a class="moz-txt-link-abbreviated"
href="mailto:389-users@redhat.com">389-users@redhat.com</a>
<br>
<a class="moz-txt-link-freetext"
href="https://www.redhat.com/mailman/listinfo/fedora-directory-users">https://www.redhat.com/mailman/listinfo/fedora-directory-users</a>
<br>
</blockquote>
<br>
<pre wrap="">
<hr size="4" width="90%">
--
389 users mailing list
<a class="moz-txt-link-abbreviated"
href="mailto:389-users@redhat.com">389-users@redhat.com</a>
<a class="moz-txt-link-freetext"
href="https://www.redhat.com/mailman/listinfo/fedora-directory-users">https://www.redhat.com/mailman/listinfo/fedora-directory-users</a>
</pre>
</blockquote>
<br>
</body>
</html>
Rich Megginson
2009-Nov-25 18:02 UTC
Re: [389-users] Multi master replication - "Invalid syntax" error.
Daniel wrote:> Hi Rich, > > very good point, I just discovered a very important difference. > > ldap1 - rpm -qi 389-ds-base gives - package "389-ds-base is not > installed" -rpm -qi fedora-ds-base> > unlike of ldap2 which states the following output: > > Name : 389-ds-base Relocations: (not relocatable) > Version : 1.2.2 Vendor: (none) > Release : 1.el5 Build Date: Tue 25 Aug > 2009 10:55:38 PM CEST > Install Date: Sat 07 Nov 2009 09:33:41 PM CET Build Host: localhost > Group : System Environment/Daemons Source RPM: > 389-ds-base-1.2.2-1.el5.src.rpm > Size : 5236534 License: GPLv2 with > exceptions > Signature : DSA/SHA1, Wed 26 Aug 2009 04:15:41 PM CEST, Key ID > 0db66119a7b02652 > URL : http://port389.org/ > Summary : 389 Directory Server (base) > Description : > 389 Directory Server is an LDAPv3 compliant server. The base package > includes > the LDAP server and command line utilities for server administration. > > ldap1 is the machine I have taken after someone and I was told that > it''s the 389 dirserver. > > When I want an information about package installed on ldap1 I have to > write: > > rpm -qi fedora-ds > > with this output: > > Name : fedora-ds Relocations: (not relocatable) > Version : 1.1.3 Vendor: (none) > Release : 1.fc6 Build Date: Wed 01 Apr > 2009 09:15:05 PM CEST > Install Date: Sat 11 Apr 2009 11:01:52 PM CEST Build Host: localhost > Group : System Environment/Daemons Source RPM: > fedora-ds-1.1.3-1.fc6.src.rpm > Size : 12279 License: GPLv2 > Signature : DSA/SHA1, Thu 02 Apr 2009 08:57:18 PM CEST, Key ID > 0db66119a7b02652 > URL : http://directory.fedoraproject.org/ > Summary : Red Hat Directory, Administration, and Console Suite > Description : > The Red Hat Directory Server, Administration Server, and Console Suite > provide > the LDAPv3 server, the httpd daemon used to administer the server, and the > console GUI application used for server and user/group administration. > > Do you think this could be the part of the reason?I think the problem is schema/syntax incompatibility between fedora ds and the latest 389 ds. I''d like to try to narrow down exactly what schema/syntax is causing the problem.> > Rich Megginson wrote: >> Daniel wrote: >>> Hi, I need a helping hand from some experienced 389-ds admin. >>> >>> I have built two LDAPs based on CentOS 5.3 and Fedora directory server. >>> >>> ldap1 - is the production server which is running a few months. all of >>> the data are placed there. >>> >> What version? rpm -qi 389-ds-base (or fedora-ds-base if still using >> fedora-ds) >>> ldap2 - is the clean install of CentOS 5.3 and 389-ds, identical to >>> ldap1, but with no data at all. >>> >> What version? rpm -qi 389-ds-base >> >> The schema and syntax checking have been improved in 389 1.2.1 and >> later. Do you have any custom schema? >>> My point is to replicate present ldap1 data in to the new ldap2 server. >>> >>> I went through the documentation here >>> http://directory.fedoraproject.org/wiki/Howto:MultiMasterReplication >>> and >>> everything seems to be OK >>> Replication agreements are created, when I display them I get the >>> following output >>> >>> replication agreements from ldap1.mydomain.com (389) >>> ->ldap2.mydomain.com (389) >>> >>> replication agreements from ldap2.mydomain.com (389) >>> ->ldap1.mydomaincom (389) >>> >>> ...but when I perform the ldapsearch for some certain records - ldap2 >>> won''t find anything. >>> >>> So I checked the ldap1 error log and found this >>> >>> 25/Nov/2009:13:08:40 +0100] NSMMReplicationPlugin - agmt_delete: begin >>> [25/Nov/2009:13:08:48 +0100] NSMMReplicationPlugin - >>> agmt="cn="Replication to ldap2.mydomain.com"" (ldap2:389): Schema >>> replication update failed: Invalidsyntax >>> [25/Nov/2009:13:08:48 +0100] NSMMReplicationPlugin - >>> agmt="cn="Replication to ldap2.mydomain.com"" (ldap2:389): Warning: >>> unable to replicate schema: rc=1 >>> [25/Nov/2009:13:08:51 +0100] NSMMReplicationPlugin - >>> agmt="cn="Replication to ldap2.mydomain.com"" (ldap2:389): Schema >>> replication update failed: Invalid syntax >>> [25/Nov/2009:13:08:51 +0100] NSMMReplicationPlugin - Warning: unable to >>> replicate schema to host ldap2.mydomain.com, port 389. Continuing with >>> total update session. >>> [25/Nov/2009:13:08:51 +0100] NSMMReplicationPlugin - Beginning total >>> update of replica "agmt="cn="Replication to ldap2.mydomain.com"" >>> (ldap2:389)". >>> [25/Nov/2009:13:08:54 +0100] NSMMReplicationPlugin - Finished total >>> update of replica "agmt="cn="Replication to ldap2.mydomain.com"" >>> (ldap2:389)". Sent 107 entries. >>> >>> Can you please explain to me what does it mean "Invalid syntax"? >>> I googled but no useful information were found. >>> >>> So if someone knows what to do for solution I would greatly appreciate >>> the help. >>> >>> Thank you very much. >>> >>> ~ Daniel. >>> >>> -- >>> 389 users mailing list >>> 389-users@redhat.com >>> https://www.redhat.com/mailman/listinfo/fedora-directory-users >>> >> >> ------------------------------------------------------------------------ >> >> -- >> 389 users mailing list >> 389-users@redhat.com >> https://www.redhat.com/mailman/listinfo/fedora-directory-users >> > > ------------------------------------------------------------------------ > > -- > 389 users mailing list > 389-users@redhat.com > https://www.redhat.com/mailman/listinfo/fedora-directory-users >
Daniel
2009-Nov-25 18:32 UTC
Re: [389-users] Multi master replication - "Invalid syntax" error.
And what kind of action do you recommend? Rich Megginson wrote:> Daniel wrote: >> Hi Rich, >> >> very good point, I just discovered a very important difference. >> >> ldap1 - rpm -qi 389-ds-base gives - package "389-ds-base is not >> installed" - > rpm -qi fedora-ds-base >> >> unlike of ldap2 which states the following output: >> >> Name : 389-ds-base Relocations: (not >> relocatable) >> Version : 1.2.2 Vendor: (none) >> Release : 1.el5 Build Date: Tue 25 Aug >> 2009 10:55:38 PM CEST >> Install Date: Sat 07 Nov 2009 09:33:41 PM CET Build Host: localhost >> Group : System Environment/Daemons Source RPM: >> 389-ds-base-1.2.2-1.el5.src.rpm >> Size : 5236534 License: GPLv2 with >> exceptions >> Signature : DSA/SHA1, Wed 26 Aug 2009 04:15:41 PM CEST, Key ID >> 0db66119a7b02652 >> URL : http://port389.org/ >> Summary : 389 Directory Server (base) >> Description : >> 389 Directory Server is an LDAPv3 compliant server. The base package >> includes >> the LDAP server and command line utilities for server administration. >> >> ldap1 is the machine I have taken after someone and I was told that >> it''s the 389 dirserver. >> >> When I want an information about package installed on ldap1 I have to >> write: >> >> rpm -qi fedora-ds >> >> with this output: >> >> Name : fedora-ds Relocations: (not >> relocatable) >> Version : 1.1.3 Vendor: (none) >> Release : 1.fc6 Build Date: Wed 01 Apr >> 2009 09:15:05 PM CEST >> Install Date: Sat 11 Apr 2009 11:01:52 PM CEST Build Host: >> localhost >> Group : System Environment/Daemons Source RPM: >> fedora-ds-1.1.3-1.fc6.src.rpm >> Size : 12279 License: GPLv2 >> Signature : DSA/SHA1, Thu 02 Apr 2009 08:57:18 PM CEST, Key ID >> 0db66119a7b02652 >> URL : http://directory.fedoraproject.org/ >> Summary : Red Hat Directory, Administration, and Console Suite >> Description : >> The Red Hat Directory Server, Administration Server, and Console >> Suite provide >> the LDAPv3 server, the httpd daemon used to administer the server, >> and the >> console GUI application used for server and user/group administration. >> >> Do you think this could be the part of the reason? > I think the problem is schema/syntax incompatibility between fedora ds > and the latest 389 ds. I''d like to try to narrow down exactly what > schema/syntax is causing the problem. >> >> Rich Megginson wrote: >>> Daniel wrote: >>>> Hi, I need a helping hand from some experienced 389-ds admin. >>>> >>>> I have built two LDAPs based on CentOS 5.3 and Fedora directory >>>> server. >>>> >>>> ldap1 - is the production server which is running a few months. all of >>>> the data are placed there. >>>> >>> What version? rpm -qi 389-ds-base (or fedora-ds-base if still using >>> fedora-ds) >>>> ldap2 - is the clean install of CentOS 5.3 and 389-ds, identical to >>>> ldap1, but with no data at all. >>>> >>> What version? rpm -qi 389-ds-base >>> >>> The schema and syntax checking have been improved in 389 1.2.1 and >>> later. Do you have any custom schema? >>>> My point is to replicate present ldap1 data in to the new ldap2 >>>> server. >>>> >>>> I went through the documentation here >>>> http://directory.fedoraproject.org/wiki/Howto:MultiMasterReplication >>>> and >>>> everything seems to be OK >>>> Replication agreements are created, when I display them I get the >>>> following output >>>> >>>> replication agreements from ldap1.mydomain.com (389) >>>> ->ldap2.mydomain.com (389) >>>> >>>> replication agreements from ldap2.mydomain.com (389) >>>> ->ldap1.mydomaincom (389) >>>> >>>> ...but when I perform the ldapsearch for some certain records - ldap2 >>>> won''t find anything. >>>> >>>> So I checked the ldap1 error log and found this >>>> >>>> 25/Nov/2009:13:08:40 +0100] NSMMReplicationPlugin - agmt_delete: begin >>>> [25/Nov/2009:13:08:48 +0100] NSMMReplicationPlugin - >>>> agmt="cn="Replication to ldap2.mydomain.com"" (ldap2:389): Schema >>>> replication update failed: Invalidsyntax >>>> [25/Nov/2009:13:08:48 +0100] NSMMReplicationPlugin - >>>> agmt="cn="Replication to ldap2.mydomain.com"" (ldap2:389): Warning: >>>> unable to replicate schema: rc=1 >>>> [25/Nov/2009:13:08:51 +0100] NSMMReplicationPlugin - >>>> agmt="cn="Replication to ldap2.mydomain.com"" (ldap2:389): Schema >>>> replication update failed: Invalid syntax >>>> [25/Nov/2009:13:08:51 +0100] NSMMReplicationPlugin - Warning: >>>> unable to >>>> replicate schema to host ldap2.mydomain.com, port 389. Continuing with >>>> total update session. >>>> [25/Nov/2009:13:08:51 +0100] NSMMReplicationPlugin - Beginning total >>>> update of replica "agmt="cn="Replication to ldap2.mydomain.com"" >>>> (ldap2:389)". >>>> [25/Nov/2009:13:08:54 +0100] NSMMReplicationPlugin - Finished total >>>> update of replica "agmt="cn="Replication to ldap2.mydomain.com"" >>>> (ldap2:389)". Sent 107 entries. >>>> >>>> Can you please explain to me what does it mean "Invalid syntax"? >>>> I googled but no useful information were found. >>>> >>>> So if someone knows what to do for solution I would greatly appreciate >>>> the help. >>>> >>>> Thank you very much. >>>> >>>> ~ Daniel. >>>> >>>> -- >>>> 389 users mailing list >>>> 389-users@redhat.com >>>> https://www.redhat.com/mailman/listinfo/fedora-directory-users >>>> >>> >>> ------------------------------------------------------------------------ >>> >>> >>> -- >>> 389 users mailing list >>> 389-users@redhat.com >>> https://www.redhat.com/mailman/listinfo/fedora-directory-users >>> >> >> ------------------------------------------------------------------------ >> >> -- >> 389 users mailing list >> 389-users@redhat.com >> https://www.redhat.com/mailman/listinfo/fedora-directory-users >> > > ------------------------------------------------------------------------ > > -- > 389 users mailing list > 389-users@redhat.com > https://www.redhat.com/mailman/listinfo/fedora-directory-users >
Rich Megginson
2009-Nov-30 15:13 UTC
Re: [389-users] Multi master replication - "Invalid syntax" error.
Daniel wrote:> And what kind of action do you recommend? >Let''s first identify what version of fedora-ds - rpm -qi fedora-ds-base> Rich Megginson wrote: > >> Daniel wrote: >> >>> Hi Rich, >>> >>> very good point, I just discovered a very important difference. >>> >>> ldap1 - rpm -qi 389-ds-base gives - package "389-ds-base is not >>> installed" - >>> >> rpm -qi fedora-ds-base >> >>> unlike of ldap2 which states the following output: >>> >>> Name : 389-ds-base Relocations: (not >>> relocatable) >>> Version : 1.2.2 Vendor: (none) >>> Release : 1.el5 Build Date: Tue 25 Aug >>> 2009 10:55:38 PM CEST >>> Install Date: Sat 07 Nov 2009 09:33:41 PM CET Build Host: localhost >>> Group : System Environment/Daemons Source RPM: >>> 389-ds-base-1.2.2-1.el5.src.rpm >>> Size : 5236534 License: GPLv2 with >>> exceptions >>> Signature : DSA/SHA1, Wed 26 Aug 2009 04:15:41 PM CEST, Key ID >>> 0db66119a7b02652 >>> URL : http://port389.org/ >>> Summary : 389 Directory Server (base) >>> Description : >>> 389 Directory Server is an LDAPv3 compliant server. The base package >>> includes >>> the LDAP server and command line utilities for server administration. >>> >>> ldap1 is the machine I have taken after someone and I was told that >>> it''s the 389 dirserver. >>> >>> When I want an information about package installed on ldap1 I have to >>> write: >>> >>> rpm -qi fedora-ds >>> >>> with this output: >>> >>> Name : fedora-ds Relocations: (not >>> relocatable) >>> Version : 1.1.3 Vendor: (none) >>> Release : 1.fc6 Build Date: Wed 01 Apr >>> 2009 09:15:05 PM CEST >>> Install Date: Sat 11 Apr 2009 11:01:52 PM CEST Build Host: >>> localhost >>> Group : System Environment/Daemons Source RPM: >>> fedora-ds-1.1.3-1.fc6.src.rpm >>> Size : 12279 License: GPLv2 >>> Signature : DSA/SHA1, Thu 02 Apr 2009 08:57:18 PM CEST, Key ID >>> 0db66119a7b02652 >>> URL : http://directory.fedoraproject.org/ >>> Summary : Red Hat Directory, Administration, and Console Suite >>> Description : >>> The Red Hat Directory Server, Administration Server, and Console >>> Suite provide >>> the LDAPv3 server, the httpd daemon used to administer the server, >>> and the >>> console GUI application used for server and user/group administration. >>> >>> Do you think this could be the part of the reason? >>> >> I think the problem is schema/syntax incompatibility between fedora ds >> and the latest 389 ds. I''d like to try to narrow down exactly what >> schema/syntax is causing the problem. >> >>> Rich Megginson wrote: >>> >>>> Daniel wrote: >>>> >>>>> Hi, I need a helping hand from some experienced 389-ds admin. >>>>> >>>>> I have built two LDAPs based on CentOS 5.3 and Fedora directory >>>>> server. >>>>> >>>>> ldap1 - is the production server which is running a few months. all of >>>>> the data are placed there. >>>>> >>>>> >>>> What version? rpm -qi 389-ds-base (or fedora-ds-base if still using >>>> fedora-ds) >>>> >>>>> ldap2 - is the clean install of CentOS 5.3 and 389-ds, identical to >>>>> ldap1, but with no data at all. >>>>> >>>>> >>>> What version? rpm -qi 389-ds-base >>>> >>>> The schema and syntax checking have been improved in 389 1.2.1 and >>>> later. Do you have any custom schema? >>>> >>>>> My point is to replicate present ldap1 data in to the new ldap2 >>>>> server. >>>>> >>>>> I went through the documentation here >>>>> http://directory.fedoraproject.org/wiki/Howto:MultiMasterReplication >>>>> and >>>>> everything seems to be OK >>>>> Replication agreements are created, when I display them I get the >>>>> following output >>>>> >>>>> replication agreements from ldap1.mydomain.com (389) >>>>> ->ldap2.mydomain.com (389) >>>>> >>>>> replication agreements from ldap2.mydomain.com (389) >>>>> ->ldap1.mydomaincom (389) >>>>> >>>>> ...but when I perform the ldapsearch for some certain records - ldap2 >>>>> won''t find anything. >>>>> >>>>> So I checked the ldap1 error log and found this >>>>> >>>>> 25/Nov/2009:13:08:40 +0100] NSMMReplicationPlugin - agmt_delete: begin >>>>> [25/Nov/2009:13:08:48 +0100] NSMMReplicationPlugin - >>>>> agmt="cn="Replication to ldap2.mydomain.com"" (ldap2:389): Schema >>>>> replication update failed: Invalidsyntax >>>>> [25/Nov/2009:13:08:48 +0100] NSMMReplicationPlugin - >>>>> agmt="cn="Replication to ldap2.mydomain.com"" (ldap2:389): Warning: >>>>> unable to replicate schema: rc=1 >>>>> [25/Nov/2009:13:08:51 +0100] NSMMReplicationPlugin - >>>>> agmt="cn="Replication to ldap2.mydomain.com"" (ldap2:389): Schema >>>>> replication update failed: Invalid syntax >>>>> [25/Nov/2009:13:08:51 +0100] NSMMReplicationPlugin - Warning: >>>>> unable to >>>>> replicate schema to host ldap2.mydomain.com, port 389. Continuing with >>>>> total update session. >>>>> [25/Nov/2009:13:08:51 +0100] NSMMReplicationPlugin - Beginning total >>>>> update of replica "agmt="cn="Replication to ldap2.mydomain.com"" >>>>> (ldap2:389)". >>>>> [25/Nov/2009:13:08:54 +0100] NSMMReplicationPlugin - Finished total >>>>> update of replica "agmt="cn="Replication to ldap2.mydomain.com"" >>>>> (ldap2:389)". Sent 107 entries. >>>>> >>>>> Can you please explain to me what does it mean "Invalid syntax"? >>>>> I googled but no useful information were found. >>>>> >>>>> So if someone knows what to do for solution I would greatly appreciate >>>>> the help. >>>>> >>>>> Thank you very much. >>>>> >>>>> ~ Daniel. >>>>> >>>>> -- >>>>> 389 users mailing list >>>>> 389-users@redhat.com >>>>> https://www.redhat.com/mailman/listinfo/fedora-directory-users >>>>> >>>>> >>>> ------------------------------------------------------------------------ >>>> >>>> >>>> -- >>>> 389 users mailing list >>>> 389-users@redhat.com >>>> https://www.redhat.com/mailman/listinfo/fedora-directory-users >>>> >>>> >>> ------------------------------------------------------------------------ >>> >>> -- >>> 389 users mailing list >>> 389-users@redhat.com >>> https://www.redhat.com/mailman/listinfo/fedora-directory-users >>> >>> >> ------------------------------------------------------------------------ >> >> -- >> 389 users mailing list >> 389-users@redhat.com >> https://www.redhat.com/mailman/listinfo/fedora-directory-users >> >> > > -- > 389 users mailing list > 389-users@redhat.com > https://www.redhat.com/mailman/listinfo/fedora-directory-users >