ldap 2.4

Mon Mar 5 07:02:42 PST 2012

Greetings to all.

Here's one to break the deafening silence on the list.

Have any of you worked with ldap 2.4?

We have a much older version of ldap in production on old
out-of-warranty servers. We have several servers at more than one site
using master/slave and the old slurpd method of replication. We only
use ldap for linux login authentication (including host access
controls).

I've transferred the ldif of our existing system to a new oel6
(equivalent to rhel6 centos6 sl6) server at the latest maintenance
level, and the server works normally at first, but there are a couple
of glitches that are impeding progress. We don't yet have a
maintenance agreement for the new server, so I can't pursue these
problems with the vendor. The almighty google has not thus far yielded
any nuggets of wisdom. I'm wondering if any of you have any ideas?

1. The standard /etc/init.d/slapd start script has a couple of gotchas
that I've patched temporarily. The script attempts to crate a hard
link to the pidfile that fails, and this prevents 'service slapd stop'
from working.

2. I can't find any way to get anything written to the logfile at any
error level. The only google references I can find just talk about the
error leverls.

3. When I add the necessary parameters to slapd.conf to enable
syncrepl delta mode,slapd dies and corrupts the accesslog db. I'll
probably need to strace this. Until I get past this, I haven't yet
brought up any consumer system. I'm still using slapd.conf method, not
the new slapd.d and db for parameters. My parameters for syncrepl,
etc. are a pretty close match to to samples I've found.

Happy linux days.

-- 
Collins Richey
     If you fill your heart with regrets of yesterday and the worries
     of tomorrow, you have no today to be thankful for.