Kyley Engle wrote:
There are probably some other values under o=NetscapeRoot somewhere that reference the old directory server. Try this: cd /opt/fedora-ds/shared/bin ; ./ldapsearch -T -h host -p port -D "cn=directory manager" -w password -s sub -b o=netscaperoot "objectclass=*" | grep "old ldap server host and/or port"so here's where i'm at now.....primary-master and secondary-master running...everything is fine. i shut down the primary-master and i can log into the admin console on the secondary-master fine. however, if i try to restart the admin server, it fails with:[Thu Apr 26 22:48:50 2007] [info] Init: Initializing NSS library[Thu Apr 26 22:48:50 2007] [info] Initializing SSL Session Cache of size 10000. SSL2 timeout = 100, SSL3/TLS timeout = 86400. [Thu Apr 26 22:48:50 2007] [info] Init: Initializing (virtual) servers for SSL [Thu Apr 26 22:48:50 2007] [info] Server: Apache/2.0.52, Interface: mod_nss/2.0.52, Library: NSS/3.11 [Thu Apr 26 22:48:50 2007] [debug] mod_admserv.c(2154): [30854] Cache expiration set to 600 seconds [Thu Apr 26 22:48:50 2007] [crit] mod_admserv_post_config(): unable to build user/group LDAP server info: unable to set User/Group baseDNConfiguration FailedI change the 2 files and 1 directory entry listed in the HowTo: and i get the exact same behavior.
I have no pass through authentication configured. I'm doing some testing on 2 freshly installed instances that don't have anything other than o=NetscapeRoot replication enabled and working.hope this is useful.... -keFrom: Richard Megginson <rmeggins@xxxxxxxxxx>Reply-To: "General discussion list for the Fedora Directory server project." <fedora-directory-users@xxxxxxxxxx> To: "General discussion list for the Fedora Directory server project." <fedora-directory-users@xxxxxxxxxx> Subject: Re: Problem with Admin Console failoverusingFedoraDSDate: Thu, 26 Apr 2007 16:01:22 -0600 Kyley Engle wrote:I think you'll also need to change or disable the pass through authentication plug-in in your backup configuration directory server.i have done that, as well as changing the directory in the nsDirectoryURL entry and the file /opt/fedora-ds/admin-serv/config/adm.confis there maybe a way to increase the debug logging on the admin-serv? i'm not finding very much documentation on it.edit admin-serv/config/httpd.conf and set the LogLevel to debugkeFrom: Richard Megginson <rmeggins@xxxxxxxxxx>Reply-To: "General discussion list for the Fedora Directory server project." <fedora-directory-users@xxxxxxxxxx> To: "General discussion list for the Fedora Directory server project." <fedora-directory-users@xxxxxxxxxx> Subject: Re: Problem with Admin Console failoverusing FedoraDSDate: Thu, 26 Apr 2007 15:17:43 -0600 Kyley Engle wrote:Try updating shared/config/dbswitch.conf to point to the backup configuration ds.Hello,I am having problems with the admin-serv when doing failure testing in my multi-master environmnet.What I have: 2 masters replicating the userRoot and NetscapeRoot directories various hub and consumer/search serversWhen I installed the instances on each of these servers, i pointed them at one of the masters, let's call it primary-master, for it's configuration directory. when both masters are up and running, i can connect my admin consoel to either directory and manage my fleet of serversWhile doing failure mode testing, I discovered that if the primary-master was turned off, that the secondary master admin-serv would not start properly. it gives the following in /opt/fedora-ds/admin-serv/logs/error:[Tue Apr 24 20:37:36 2007] [crit] mod_admserv_post_config(): unable to build user/group LDAP server info: unable to set User/Group baseDNConfiguration Failed I followed the instructions found here:http://directory.fedoraproject.org/wiki/Howto:AdminServerLDAPMgmt#How_to_change_the_user.2Fgroup_LDAP_serverto change the admin server running on secondary-master to point to itself instead of to the primary master. this did not resolve the issue.Has anyone out there gotten the configuration directory successfully working in a failover capacity in a multi-master environment?ke _________________________________________________________________The average US Credit Score is 675. The cost to see yours: $0 by Experian. http://www.freecreditreport.com/pm/default.aspx?sc=660600&bcd=EMAILFOOTERAVERAGE-- Fedora-directory-users mailing list Fedora-directory-users@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-directory-users<< smime.p7s >>-- Fedora-directory-users mailing list Fedora-directory-users@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-directory-users_________________________________________________________________Download Messenger. Join the i’m Initiative. Help make a difference today. http://im.live.com/messenger/im/home/?source=TAGHM_APR07-- Fedora-directory-users mailing list Fedora-directory-users@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-directory-users<< smime.p7s >>-- Fedora-directory-users mailing list Fedora-directory-users@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-directory-users_________________________________________________________________Mortgage refinance is Hot. *Terms. Get a 5.375%* fix rate. Check savings https://www2.nextag.com/goto.jsp?product=100000035&url=%2fst.jsp&tm=y&search=mortgage_text_links_88_h2bbb&disc=y&vers=925&s=4056&p=5117-- Fedora-directory-users mailing list Fedora-directory-users@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-directory-users
Attachment:
smime.p7s
Description: S/MIME Cryptographic Signature
-- Fedora-directory-users mailing list Fedora-directory-users@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-directory-users
