This is an old revision of the document!

Configure OpenLDAP replication on Debian 8 (Jessie)

  • This tutorial show how to do master → slave replication. Only the master will accept writes!

  • Give the sync account the necessary right to read everything. This includes passwords!
    • Simply modify the access.ldif in the “Enforce Authrization” step to include the sync account like the admin account.
  • Create a syncmod.ldif, index.ldif file and a sync.ldif file:
  • dn: cn=module{0},cn=config
    changetype: modify
    add: olcModuleLoad
  • dn: olcOverlay=syncprov,olcDatabase={1}mdb,cn=config
    changetype: add
    objectClass: olcOverlayConfig
    objectClass: olcSyncProvConfig
    olcOverlay: syncprov
  • dn: olcDatabase={1}mdb,cn=config
    changetype: modify
    add: olcDbIndex
    olcDbIndex: entryUUID,entryCSN eq
  • tutorial/ldap/syncopenldap.1460580781.txt.gz
  • Last modified: 2018-06-03 14:10
  • (external edit)