Samba 3.0 / idmap backend ldap

Leandro Ariel Gomez Chavarria lgomez at cencosud.com.ar
Wed Nov 19 18:54:56 GMT 2003


Jerry

Let see if I understand what you mean. 
You said that when winbindd connects to the slave, this one tells
winbindd to rebind his connection to the master? on a write operation or
any kind?

If that, it never happened. When winbindd connects to the slave stay
there and if (supouse) insert a new SambaSID in this one and increments
uidNumber, the changes never arrives to the master, so, when I restart
winbindd and connects to the master the uidNumber it's incorrect; and
the recently added SambaSID doesn't exists. If I request a new
Uid/SambaSID for a different user it (of course) give me a Uid already
assigned to a different SambaSID in the slave, and the master sends to
the slave the update/insert for that new record, and the first user
regain a new Uid next time it request it.

I thought that open ldap can synchronize on both ways, isn't it true?

Be sides, once winbindd bind his connection to one ldap server; it stay
there? I mean if I have 2 ldap servers (master and slave) and a fqdn in
my dns for both servers (for example in my case ldap.sys.arg means the 2
differents ip's) shouldn't be able to balance the requests between
them?

anyway, here is my ldap stuff from the smb.conf

        ldap suffix = dc=openldap,dc=e200,dc=arg
        ldap admin dn = cn=Manager,dc=openldap,dc=e200,dc=arg
        idmap backend = ldap:ldap://ldap.sys.arg:389
        ldap idmap suffix = ou=smbIdMap
 
comments?

thanks, leandro.-

>>> "Gerald (Jerry) Carter" <jerry at samba.org> 11/19/03 11:07am >>>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Leandro Ariel Gomez Chavarria wrote:

| Hi all, I'm testing openldap in a RedHat 9 (openldap-2.0.27-8
| rpm's) to store IdMaps for samba 3.0 using idmap backend = ldap,
| because I have it in a HA configuration, so I need a
| unique idMap across the nodes of the cluster.
|
| I install open ldap in 2 linuxboxes (lxcluster01 and
| lxcluster02) to run as Master and Slave ldap servers, everything
| seems to work fine, but when I test the slave I notice that
| when I create a new entry it doesn't replicate on the master,
| I think this have to be the "normal" behavior, or I'm wrong?
|
| I ran in debug mode all the processes to see what's
| going on and I never saw the slave trying to contact
| the master. Note that the replication from the master
| to the slave works fine.

The slave should send a referral back to winbindd
for the master (e.g. updateref).  Winbindd should
then rebind to the master and issue the ldapadd().
Did you see this?


- --
cheers, jerry
-
----------------------------------------------------------------------
Hewlett-Packard            ------------------------- http://www.hp.com

SAMBA Team                 ---------------------- http://www.samba.org

GnuPG Key                  ---- http://www.plainjoe.org/gpg_public.asc

"If we're adding to the noise, turn off this song" --Switchfoot (2003)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org 

iD8DBQE/u3k+IR7qMdg1EfYRAktVAKDQ4Q3CGTiZ9Qicx22fYZMWuuyMGgCg0WPn
+0XRWdudkQQrZf6ho2XBcHg=
=L5Ev
-----END PGP SIGNATURE-----




More information about the samba-technical mailing list