[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: =?UTF-8?B?15HXoNeV16nXkDoga2FkbWluIHRhbGtpbmd0byBsZGFwaXByb2I=?==?UTF-8?B?bGVt?=

To: Kent Nasveschuk <Kent.Nasveschuk@fastsearch.com>
Subject: Re: =?UTF-8?B?15HXoNeV16nXkDoga2FkbWluIHRhbGtpbmd0byBsZGFwaXByb2I=?==?UTF-8?B?bGVt?=
From: Howard Chu <hyc@highlandsun.com>
Date: Thu, 02 Nov 2006 00:03:45 -0800
Cc: "Heimdal, Discuss mail list" <heimdal-discuss@sics.se>
In-Reply-To: <1162456752.10503.19.camel@dhcp55.bos3.fastsearch.net>
References: <cfb54190610291540q67aa4bf8h4865d40cecba662b@mail.gmail.com> <1162283989.4323.16.camel@dhcp55.bos3.fastsearch.net> <1162281517.31477.31.camel@localhost.localdomain> <1162452283.10503.13.camel@dhcp55.bos3.fastsearch.net> <4549934E.40808@highlandsun.com> <1162456752.10503.19.camel@dhcp55.bos3.fastsearch.net>
Sender: owner-heimdal-discuss@sics.se
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9a1) Gecko/20061029 Netscape/7.2 (ax) Firefox/1.5 SeaMonkey/1.5a

Kent Nasveschuk wrote:
> On Wed, 2006-11-01 at 22:42 -0800, Howard Chu wrote:
>> Kent Nasveschuk wrote:
>> >
>> > On Tue, 2006-10-31 at 02:58 -0500, Andrew Bartlett wrote:
>> >> On Tue, 2006-10-31 at 02:32 -0500, Kent Nasveschuk wrote:
>> >> > I think I have this running now, well at least kadmin writes to LDAP.
>> >> > I was able to initialize the realm and add users. Couple questions:
>> >> > 
>> >> > 1) Replication when using LDAP as backend. In the past I have used
>> >> > slurpd to replicate the master to slaves. I haven't used syncrepl yet
>> >> > but I realize that it is probably the way to go. When you factor in
>> >> > Heimdal, how can I replicate this? I'm new to Heimdal, one would think
>> >> > that replication can't be left to syncrepl anymore.
>>
>> Once the info is in LDAP, it doesn't matter where it came from. Why in 
>> the world would you think that Heimdal doesn't work with syncrepl?
>>     
> I know syncrepl will work with the LDAP side, how do I replicate KDCs 
> with LDAP backend?

This is no different than any other LDAP replication scenario. Set up a 
slapd slave wherever you want to run a replicated KDC. Use chaining to 
forward KDC writes on the slaves up to the master.

-- 
  -- Howard Chu
  Chief Architect, Symas Corp.  http://www.symas.com
  Director, Highland Sun        http://highlandsun.com/hyc
  OpenLDAP Core Team            http://www.openldap.org/project/

Follow-Ups:
- Re: &bet;&nun;&vav;&shin;&alef;: kadmin talkingtoldapiproblem
  - From: Kent Nasveschuk <Kent.Nasveschuk@fastsearch.com>

References:
- Re: &bet;&nun;&vav;&shin;&alef;: kadmin talkingtoldapiproblem
  - From: Kent Nasveschuk <Kent.Nasveschuk@fastsearch.com>
- Re: =?UTF-8?B?15HXoNeV16nXkDoga2FkbWluIHRhbGtpbmd0byBsZGFwaXByb2I=?==?UTF-8?B?bGVt?=
  - From: Howard Chu <hyc@highlandsun.com>
- Re: &bet;&nun;&vav;&shin;&alef;: kadmin talkingtoldapiproblem
  - From: Kent Nasveschuk <Kent.Nasveschuk@fastsearch.com>

Prev by Date: Re: &bet;&nun;&vav;&shin;&alef;: kadmin talkingtoldapiproblem
Next by Date: Re: iprop problem
Prev by thread: Re: &bet;&nun;&vav;&shin;&alef;: kadmin talkingtoldapiproblem
Next by thread: Re: &bet;&nun;&vav;&shin;&alef;: kadmin talkingtoldapiproblem
Index(es):
- Date
- Thread