alexisd78
Level 1
(0 points)
Q: OpenDirectory replication
We have a legacy Mountain Lion Server and I'm trying to create a replica of the OpenDirectory for authentication purposes.
I tried to create the replica using the Server App and it fails saying complaining about a network error. So i opted to try and create the replica using the CLI in order to get better visibility and this is what happens:
silvermoon:~ sysadmin$ sudo slapconfig -createreplica ***HOSTNAME*** adelgado
2014-09-08 22:47:07 +0000 slapconfig -createreplica
adelgado's Password:
2014-09-08 22:47:11 +0000 command: /usr/sbin/sso_util info -r /LDAPv3/ldap://***HOSTNAME*** -p
2014-09-08 22:47:12 +0000 1 Creating computer record for replica
2014-09-08 22:47:18 +0000 command: /usr/sbin/slapconfig -delkeychain /LDAPv3/127.0.0.1 ***HOSTNAME***$
2014-09-08 22:47:18 +0000 Added computer password to keychain
2014-09-08 22:47:18 +0000 2 Creating ldap replicator user
2014-09-08 22:47:18 +0000 _ldap_replicator exists from previous replica - migrating
2014-09-08 22:47:18 +0000 NSString *_getReplicatorPasswordWithNode(ODNode *): no syncrepl attribute found in results
2014-09-08 22:47:18 +0000 Unable to get replicator password, recreating replicator
2014-09-08 22:47:29 +0000 ServerID for this replica 19
2014-09-08 22:47:30 +0000 command: /usr/bin/sntp -s time.apple.com.
2014-09-08 22:47:30 +0000 3 Updating local replica configuration
2014-09-08 22:47:30 +0000 4 Gathering replication data from the master
2014-09-08 22:47:30 +0000 5 Copying master database to new replica
2014-09-08 22:47:30 +0000 Removed directory at path /var/db/openldap/openldap-data.
2014-09-08 22:47:31 +0000 Starting LDAP server (slapd)
2014-09-08 22:47:31 +0000 Waiting for slapd to start
2014-09-08 22:47:33 +0000 slapd started
2014-09-08 22:47:33 +0000 Stopping LDAP server (slapd)
2014-09-08 22:47:37 +0000 command: /usr/sbin/slaptest -f /etc/openldap/slapd.conf -F /etc/openldap/slapd.d
2014-09-08 22:47:38 +0000 command: /usr/sbin/slapadd -c -w -l /var/db/openldap/openldap-data/backup.ldif
2014-09-08 22:47:38 +0000 command: /usr/sbin/slapadd -c -w -b cn=authdata -l /var/db/openldap/authdata/authdata.ldif
2014-09-08 22:47:39 +0000
2014-09-08 22:47:39 +0000 540e320a slapd is running in import mode - only use if importing large data
540e320a bdb_monitor_db_open: monitoring disabled; configure monitor database to enable
2014-09-08 22:47:39 +0000 6 Starting new replica
2014-09-08 22:47:39 +0000 Starting LDAP server (slapd)
2014-09-08 22:47:39 +0000 Waiting for slapd to start
2014-09-08 22:47:39 +0000 slapd started
2014-09-08 22:47:39 +0000 command: /usr/bin/ldapmodify -c -x -H ldapi://%2Fvar%2Frun%2Fldapi
2014-09-08 22:47:39 +0000 command: /usr/bin/ldapsearch -x -LLL -H ldapi://%2Fvar%2Frun%2Fldapi -b cn=config -s base olcServerID
2014-09-08 22:47:39 +0000 command: /usr/bin/ldapmodify -c -x -H ldapi://%2Fvar%2Frun%2Fldapi
2014-09-08 22:47:39 +0000 Starting password server
2014-09-08 22:47:40 +0000 7 Enabling local Kerberos server
2014-09-08 22:47:40 +0000 Configuring Kerberos server, realm is ***HOSTNAME***
2014-09-08 22:47:40 +0000 command: /usr/sbin/sso_util configure -x -k -r ***HOSTNAME*** -f /LDAPv3/ldapi://%2Fvar%2Frun%2Fldapi -a adelgado -p **** -v 1 all
2014-09-08 22:47:40 +0000 int32_t _createLDAPReplica(const char *, const char *, const char *, const char *): sso_util configure failed 1. stdout = { } stderr = { Creating the service list
Creating the keytab file
}
2014-09-08 22:47:40 +0000 No ldap principal found, skipping rootDSE population
2014-09-08 22:47:41 +0000 8 Enabling syncprov overlay on the replica
2014-09-08 22:47:41 +0000 command: /usr/bin/ldapsearch -x -LLL -H ldapi://%2Fvar%2Frun%2Fldapi -b cn=config objectClass=olcSyncProvConfig dn
2014-09-08 22:47:41 +0000 command: /usr/bin/ldapmodify -c -x -H ldapi://%2Fvar%2Frun%2Fldapi
2014-09-08 22:47:41 +0000 adding new entry "olcOverlay=syncprov,olcDatabase={1}bdb,cn=config"
2014-09-08 22:47:41 +0000 command: /usr/bin/ldapmodify -c -x -H ldapi://%2Fvar%2Frun%2Fldapi
2014-09-08 22:47:41 +0000 adding new entry "olcOverlay=syncprov,olcDatabase={2}bdb,cn=config"
2014-09-08 22:47:41 +0000 9 Adding replica to master
2014-09-08 22:47:41 +0000 int _addLDAPReplicaWithNode(ODNode *, NSDictionary *, const char *, const char *, const char *): Cannot retrieve parent ServerID for (chuckanut.intra.peaksystems.com), exiting
2014-09-08 22:47:41 +0000 Unable to add Replica to parent/master
2014-09-08 22:47:41 +0000 Unable to add Replica to parent/master (error = 73)
2014-09-08 22:47:41 +0000 Deleting Cert Authority related data
2014-09-08 22:47:41 +0000 No intCAIdentity, not removing int CA from keychain
2014-09-08 22:47:41 +0000 command: /bin/launchctl unload -w /System/Library/LaunchDaemons/com.apple.xscertd.plist
2014-09-08 22:47:41 +0000 command: /bin/launchctl unload -w /System/Library/LaunchDaemons/com.apple.xscertd-helper.plist
2014-09-08 22:47:41 +0000 command: /bin/launchctl unload -w /System/Library/LaunchDaemons/com.apple.xscertadmin.plist
2014-09-08 22:47:41 +0000 Updating ldapreplicas on primary master
2014-09-08 22:47:42 +0000 Removing self from the database
2014-09-08 22:47:43 +0000 Warning: An error occurred while re-enabling GSSAPI.
2014-09-08 22:47:44 +0000 Stopping LDAP server (slapd)
2014-09-08 22:47:48 +0000 Stopping password server
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/__db.001.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/__db.002.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/__db.003.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/__db.004.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/__db.005.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/__db.006.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/altSecurityIdentities.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/apple-company.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/apple-computers.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/apple-config-realname.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/apple-generateduid.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/apple-group-memberguid.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/apple-group-nestedgroup.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/apple-group-realname.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/apple-hwuuid.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/apple-realname.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/c.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/cn.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/DB_CONFIG.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/departmentNumber.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/dn2id.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/entryCSN.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/entryUUID.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/gidNumber.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/givenName.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/id2entry.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/ipHostNumber.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/l.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/log.0000000001.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/macAddress.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/mail.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/memberUid.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/mobile.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/objectClass.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/ou.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/postalCode.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/sn.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/st.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/street.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/telephoneNumber.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/uid.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/openldap-data/uidNumber.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/authdata/__db.001.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/authdata/__db.002.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/authdata/__db.003.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/authdata/__db.004.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/authdata/__db.005.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/authdata/__db.006.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/authdata/alock.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/authdata/authdata.ldif.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/authdata/authGUID.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/authdata/DB_CONFIG.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/authdata/dn2id.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/authdata/draft-krbPrincipalAliases.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/authdata/draft-krbPrincipalName.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/authdata/entryCSN.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/authdata/entryUUID.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/authdata/id2entry.bdb.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/authdata/log.0000000001.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/openldap/authdata/objectClass.bdb.
2014-09-08 22:47:48 +0000 Removed directory at path /var/db/openldap/authdata.
2014-09-08 22:47:48 +0000 Removed file at path /etc/openldap/slapd_macosxserver.conf.
2014-09-08 22:47:48 +0000 Removed file at path /etc/openldap/slapd.conf.
2014-09-08 22:47:48 +0000 Removed file at path /var/db/dslocal/nodes/Default/groups/com.apple.access_dsproxy.plist.
2014-09-08 22:47:48 +0000 Removed directory at path /etc/openldap/slapd.d/cn=config.
2014-09-08 22:47:48 +0000 Removed file at path /etc/openldap/slapd.d/cn=config.ldif.
2014-09-08 22:47:48 +0000 Removed directory at path /etc/openldap/slapd.d.
2014-09-08 22:47:48 +0000 Removed directory at path /etc/openldap/slapd.d.backup/cn=config.
2014-09-08 22:47:48 +0000 Removed file at path /etc/openldap/slapd.d.backup/cn=config.ldif.
2014-09-08 22:47:48 +0000 Removed directory at path /etc/openldap/slapd.d.backup.
2014-09-08 22:47:48 +0000 Stopping password server
2014-09-08 22:47:48 +0000 Removed file at path /etc/ntp_opendirectory.conf.
2014-09-08 22:47:48 +0000 Removed file at path /Library/Preferences/com.apple.openldap.plist.
Mac mini, OS X Mountain Lion (10.8.5)
Posted on Sep 8, 2014 4:06 PM
