<br><br><div class="gmail_quote">On Fri, Apr 22, 2011 at 2:10 PM, Devin Reade <span dir="ltr"><<a href="mailto:gdr@gno.org">gdr@gno.org</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
<div class="im">sync <<a href="mailto:jiannma@gmail.com">jiannma@gmail.com</a>> wrote:<br>
<br>
> I have many LDAP Servers which are 389 LDAP Server on different network .<br>
> So I want to merge them to the one server.<br>
><br>
> Could someone can give some suggestions?<br>
<br>
</div>Really broad strokes:<br>
<br>
This can work if:<br>
- All the servers you're trying to merge are using consistent schema.<br>
If they're not, it's a lost cause.<br>
- The existing servers are serving different parts of<br>
the DIT hierarchy, and that there is no overlap.<br></blockquote><div><br>First, thanks for your reply .<br><br>Sorry to tell you , the existing servers are servers differernt parts of the DIT <br>hierarchy, but there has some account on the differernt ldap servers, but passwd <br>
is not the same .<br><br>There is the first problem <br><br><br><br></div><blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
<br>
First of all, I wouldn't go down to a single server. As a minimum have<br>
one slave, or doing maintenance on your LDAP server will bring down<br>
many network services unnecessarily (as would an unplanned outage).<br>
If you have satellite offices, at least one replica per site (preferably<br>
two) is good.<br></blockquote><div><br>Yeah, you are right. I will merge the all LDAP server data to the new LDAP server<br>and then setup the slave server , which can sync the master ldap data<br><br><br><br></div><blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
<br>
The easiest way to do it is to prepare your new master, then dump the<br>
ldif from each of your old masters, then load those into the new master.<br>
Make sure you have schema checking turned on. Then configure your<br>
new replicas to use the new master. Then cut over your clients.<br>
Add in suitable testing at all stages.<br>
<br>
If you have different administrative requirements for the different part<br>
of the DIT, configure your ACLs before you import the ldif into the<br>
new master.<br>
<br>
Detailed explanations available at my standard consulting rates ;)<br>
(Just joking, I don't have the spare cycles right now.)<br>
<br>
Devin<br>
<font color="#888888">--<br>
I got food poisoning today. I don't know when I'll use it.<br>
- Stephen Wright<br>
<br>
_______________________________________________<br>
CentOS mailing list<br>
<a href="mailto:CentOS@centos.org">CentOS@centos.org</a><br>
<a href="http://lists.centos.org/mailman/listinfo/centos" target="_blank">http://lists.centos.org/mailman/listinfo/centos</a><br>
</font></blockquote></div><br>