Hi , all :
I installed two ldap tools in two servers :
one is called 389 ldap serverwhich is installed 389 ldap tool in it ,
and the other is called CentOS openldap server which is installed openldap
tool in it .
So I have an problem about the account synchronization in two servers.
That means , If I delete one account from the 389 ldap server,
then that account also does not exist in the openldap server
Could someone give me some suggestions ?
By the way, the two servers are installed the CentOS 5.3 x86_64 .
Thanks in advance .....
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<http://lists.centos.org/pipermail/centos/attachments/20100726/4afa158c/attachment.html>
On 07/26/2010 02:05 AM, sync wrote:> > So I have an problem about the account synchronization in two servers. > That means , If I delete one account from the 389 ldap server, > then that account also does not exist in the openldap serverIs there any reason you don't run 389 DS on both systems? 389 and OpenLDAP don't use the same synchronization protocol (AFAIK), so direct sync is probably impossible. If you want to run them both, you'd need a management frontend that made the same changes to both systems. I wrote such a frontend a while ago, but it's partially incomplete.
On 07/26/10 2:05 AM, sync wrote:> Hi , all : > > I installed two ldap tools in two servers : > one is called 389 ldap serverwhich is installed 389 ldap tool in it , > and the other is called CentOS openldap server which is installed > openldap tool in it . > > So I have an problem about the account synchronization in two servers. > That means , If I delete one account from the 389 ldap server, > then that account also does not exist in the openldap server > > Could someone give me some suggestions ? > > By the way, the two servers are installed the CentOS 5.3 x86_64 . >why do you have two seperate LDAP directories in the first place? If you're running two directory servers for redundancy, then they probably should be the same.