LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Server (http://www.linuxquestions.org/questions/linux-server-73/)
-   -   LDAP + Synchro partial + ACL (http://www.linuxquestions.org/questions/linux-server-73/ldap-synchro-partial-acl-4175417636/)

gnu699 07-19-2012 12:01 PM

LDAP + Synchro partial + ACL
 
Hello all,


I have 3 servers running openldap, in n-way mode.

i search to synchronize branchs or parts of my master ldap to my slaves ldap with the ACLs on the master (olcAccess).

For example:
-synchronize ou=People & ou=Groups to slave1
-synchronize ou=DHCP Servers to slave2

i'm reading the man slapd.access & i'm testing but its not trivial documentation.

Can someone help me?


Thanks very much!

gnu699

gnu699 09-07-2012 11:31 AM

Hello all,


I found a solution to do that with 'filter=' in syncrepl in the slave server:

Code:

olcSyncrepl: {0}rid=
                provider=ldap://ldap-1.example.com                                                                       
                binddn="cn=admin,dc=example,dc=com"
                bindmethod=simple
                credentials=password               
                searchbase="dc=example,dc=com"
                filter="(|(entryDN:dnSubtreeMatch:=ou=People,dc=example,dc=com)(entryDN:dnSubtreeMatch:=ou=Groups,dc=example,dc=com))"
                type=refreshAndPersist
                interval=00:00:00:10 retry="5 5 100 +"
                timeout=3

But i search again with the ACLs.


All times are GMT -5. The time now is 08:09 PM.