Say you want to benefit from LDAP replication so one OpenLDAP server acts as a Provider (aka Master) and another one acts as a Consumer (aka Slave).
Here is what you configure on the Provider. In my case it’s Ubuntu 10.04.2 LTS (lucid) and OpenLDAP 2.4.21. I’m using old school slapd.conf on both servers:
-
moduleload syncprov
-
-
overlay syncprov
-
syncprov-checkpoint 100 10
-
syncprov-sessionlog 100
And the Consumer part of slapd.conf. Ubuntu 12.04 LTS (precise) and OpenLDAP 2.4.28:
-
syncrepl rid=001
-
provider=ldaps://ldaps.domain.org:636
-
tls_reqcert=never
-
searchbase="dc=domain,dc=org"
-
filter="(objectClass=*)"
-
bindmethod=simple
-
binddn="cn=admin,dc=domain,dc=org"
-
credentials=xxxxxxx
-
retry="60 +"
-
type=refreshAndPersist
-
scope=sub
-
attrs="*,+"
-
schemachecking=off
-
interval=00:00:05:00