Hello Quanah,
no problems ;-)
Here is my config :
# AUTO-GENERATED FILE - DO NOT EDIT!! Use ldapmodify.
# CRC32 afd35345
dn: olcDatabase={0}config
objectClass: olcDatabaseConfig
olcDatabase: {0}config
olcMaxDerefDepth: 15
olcReadOnly: FALSE
olcRootDN: cn=manager,cn=config
olcRootPW:: secret
olcSyncUseSubentry: FALSE
olcMultiProvider: TRUE
olcMonitoring: FALSE
structuralObjectClass: olcDatabaseConfig
entryUUID: 94f2e3c6-7209-102f-9dc5-7b3f1ec29d0e
creatorsName: cn=config
createTimestamp: 20101022092205Z
olcAccess: {0}to * by dn.base="cn=replicator,o=mobistar.be" read by anonymous
read by * none
olcSyncrepl: {0}rid=001
provider="ldap://prodcorpldapm1.host.priv.orange.be:389/
ldaps://prodcorpldapm1.host.priv.orange.be:636/" bindmethod=simple timeout=1
network-timeout=0 binddn="cn=replicator,o=mobistar.be" credentials="secret"
keepalive=0:0:0 filter="(objectclass=*)" searchbase="cn=config" scope=sub
schemachecking=off type=refreshAndPersist retry="5 +"
olcSyncrepl: {1}rid=002
provider="ldap://prodcorpldapm2.host.priv.orange.be:389/
ldaps://prodcorpldapm2.host.priv.orange.be:636/" bindmethod=simple timeout=1
network-timeout=0 binddn="cn=replicator,o=mobistar.be" credentials="secret"
keepalive=0:0:0 filter="(objectclass=*)" searchbase="cn=config" scope=sub
schemachecking=off type=refreshAndPersist retry="5 +"
olcSyncrepl: {2}rid=003
provider="ldap://prodcorpldapm3.host.priv.orange.be:389/
ldaps://prodcorpldapm3.host.priv.orange.be:636/" bindmethod=simple timeout=1
network-timeout=0 binddn="cn=replicator,o=mobistar.be" credentials="secret"
keepalive=0:0:0 filter="(objectclass=*)" searchbase="cn=config" scope=sub
schemachecking=off type=refreshAndPersist retry="5 +"
olcSyncrepl: {3}rid=004
provider="ldap://prodcorpldapm4.host.priv.orange.be:389/
ldaps://prodcorpldapm4.host.priv.orange.be:636/" bindmethod=simple timeout=1
network-timeout=0 binddn="cn=replicator,o=mobistar.be" credentials="secret"
keepalive=0:0:0 filter="(objectclass=*)" searchbase="cn=config" scope=sub
schemachecking=off type=refreshAndPersist retry="5 +"
olcAddContentAcl: FALSE
olcLastMod: FALSE
entryCSN: 20210921161430.588403Z#000000#002#000000
modifiersName: cn=manager,cn=config
modifyTimestamp: 20210921161430Z
# AUTO-GENERATED FILE - DO NOT EDIT!! Use ldapmodify.
# CRC32 dc3815c8
dn: cn=config
objectClass: olcGlobal
cn: config
olcConfigFile: /usr/app/LDAP/prod-corp-M/etc/slapd.conf
olcConfigDir: /usr/app/LDAP/prod-corp-M/etc/slapd.d
olcAllows: bind_v2
olcArgsFile: /usr/app/LDAP/prod-corp-M/var/run/slapd.args
olcAttributeOptions: lang-
olcAuthzPolicy: none
olcConcurrency: 0
olcConnMaxPendingAuth: 1000
olcGentleHUP: FALSE
olcIdleTimeout: 3600
olcIndexSubstrIfMaxLen: 4
olcIndexSubstrIfMinLen: 2
olcIndexSubstrAnyLen: 4
olcIndexSubstrAnyStep: 2
olcIndexIntLen: 4
olcLocalSSF: 71
olcPasswordHash: {SHA}
olcPidFile: /usr/app/LDAP/prod-corp-M/var/run/slapd.pid
olcPluginLogFile: /usr/app/LDAP/prod-corp-M/var/log/plugin.log
olcReadOnly: FALSE
olcSaslSecProps: noplain,noanonymous
olcServerID: 1 ldap://prodcorpldapm1.host.priv.orange.be:389/
olcServerID: 2 ldap://prodcorpldapm2.host.priv.orange.be:389/
olcServerID: 3 ldap://prodcorpldapm3.host.priv.orange.be:389/
olcServerID: 4 ldap://prodcorpldapm4.host.priv.orange.be:389/
olcSockbufMaxIncoming: 262143
olcSockbufMaxIncomingAuth: 16777215
olcThreads: 16
olcTLSCACertificateFile: /usr/app/LDAP/prod-corp-M/etc/ssl/certs/cacert.pem
olcTLSCertificateFile: /usr/app/LDAP/prod-corp-M/etc/ssl/certs/servercert.pem
olcTLSCertificateKeyFile: /usr/app/LDAP/prod-corp-M/etc/ssl/keys/serverkey.pem
olcTLSCRLCheck: none
olcTLSVerifyClient: never
olcToolThreads: 1
olcWriteTimeout: 0
structuralObjectClass: olcGlobal
entryUUID: 94e68270-7209-102f-9db4-7b3f1ec29d0e
creatorsName: cn=config
createTimestamp: 20101022092205Z
olcConnMaxPending: 100
olcLogLevel: 16384
entryCSN: 20210921152518.879862Z#000000#003#000000
modifiersName: cn=manager,cn=config
modifyTimestamp: 20210921152518Z
contextCSN: 20210720121843.555301Z#000000#000#000000
contextCSN: 20210921161242.889633Z#000000#001#000000
contextCSN: 20210921160000.938214Z#000000#002#000000
contextCSN: 20210921160015.487325Z#000000#003#000000
contextCSN: 20210921155930.648119Z#000000#004#000000
I tried a few as :
olcLogLevel from 256 to 16384 and vice-versa
olcLastMod from TRUE to FALSE and vice-versa
olcAddContentAd from TRUE to FALSE and vice-versa
Sometimes, when I did it on the first member it is replicated correctly but if
I checked on the last member for which it was ok and decided to change it
again, then it's not replicated back on the 3 others.
Before in my olcSyncrepl agreements I had URI with only
"ldap://prodcorpldapm1.host.priv.orange.be:389/"; and I read on internet that
URI should be exactly as -h option of slapd start so I changed it as above but
it didn't help. I had the same result in both cases.
Brgds & thx for help.
Jean-Luc.
