backend provision samba4-ol-multimaster working

Oliver Liebel oliver at itc.li
Mon Aug 18 11:18:34 GMT 2008 


Andrew Bartlett schrieb:
>>> I would still really prefer it used the template system (rather than the
>>> hand-pasted strings).  It makes it much easier to see the options that
>>> can be modified, from the set of templates rather than deep in
>>> provision.py.  
>>>
>>>   
>>>       
>> maybe i understood you wrong, but here are no hand-pasted string... or 
>> do you mean the auto-generated-strings
>> written during setup into the confs?
>>
>> i did it this way (in a loop) for several reasons:
>> in this special case, there are not so many options (exactly: none) that 
>> could -or should- be modified anyway, except the
>> provided urls (or sasl/tls-options later, see below), and these options 
>> are given during setup.
>> the 3 dns of the sub-contexts are auto-generated as they have always the 
>> same dn and are
>> always related to the base dn. 
>> its very easy to increase the serverids and rids for every context in 
>> conjunction with the ldap-urls,
>> i couldnt get the concept of how to get this done with templates.
>>     
>
> Rather than use python string concatenation and appending writes, like
> the memberOf code does, read in the teamplate and use it to sub the
> variables.  (and then place that into the main config file multiple
> times, by means of a very long variable)
>   
okay, i will try to move the setup to make use of templating.
but to do this, please provide me just one little working example (i 
think the block/template of the
serverids and corresponding ldap-urls wil be a good point to start on 
it, as there will be
a various count too) and i will then try to adapt the procedure for the 
syncrepl-blocks.

>
>   
>> *** this could be reduced in our case, as we dont make use of the 
>> online-config (ldif-db)
>> for the schema- and config-subcontexts. so we can use delta-syncrepl, 
>> which will
>> reduce the overhead a lot.
>>     
>
> Part of why I wasn't to worried about the 'look' of the config file (and
> once we get this patch in, we can discuss that) is that I would like to
> see this migrated to cn=config (eventually).  Having that set up and
> working with the MMR backend would be very neat.
>   
the context where delta-sync makes most sense
is the user/base-dn context, as this is the normal "working" context,
where most modifications are made.
 normally, the count of modification ops on schema/config is quite small,
so i think theres no need for delta-sync in these two cases,

and the use of cn=config should be possible:
-  as long as no delta-sync is used
-  as long as there is no need for some samba-specific
olc-attributes (as the corresponding objectclasses and attributes for olc
are hardcoded into slapd)

but we should keep both points til the template-based-mmr setup is working.
> Andrew Bartlett
>
>   

____________
Virus checked by G DATA AntiVirusKit
Version: AVK 18.5040 from 18.08.2008
Virus news: www.antiviruslab.com

More information about the samba-technical mailing list