一般而言,生产环境中,ldap server都部署2台,做主从配置,这样可以提供目录服务的高可用性,两台ldap服务器之间自动同步数据。配置openldap主从结构,或许网上会有很多的文章或者博客介绍,但是绝大部分都是基于2.3的版本,注意2.3的主从配置是不适用于2.4的,所以如果要使用openldap2.4配置主从结构,在搜索的时候要注意。然而,即使百度了也会发现,网上只有寥寥几篇关于 openldap 2.4的主从配置文档,而且还都是浅尝辄止,当然,文章的作者可能已经对配置神而明之了,但是读者看了之后绝对会“晕而乎之”的,大多数的高手就甩给你一个slapd.conf针对replication的配置,然后就没有然后了。没辙,为了能get这个技能,只有×××了,Google了一下,其实有用的也就是官方的administrator手册,看手册是最能理解replication是怎么一回事儿的,但是前提是你有耐心,而且英语可以还不能较真(因为里面的句子真心觉得翻译起来不是那么回事儿),好吧,原来Google上关于这方面的文档也不是很多,最后也只能看官方手册,然后自己动手了。
本文的目的是:按照文章中的步骤,一步一步的操作,最终能把replication配置成功。
| 主机名 | IP地址 | 角色 | 操作系统 |
| ldapsrv01.contoso.com | 192.168.49.138 | Master | CentOS 6.5 |
| ldapsrv02.contoso.com | 192.168.49.139 | Slave | CentOS 6.5 |
1、准备工作
以下命令要在两台CentOS上都操作一遍。
/etc/init.d/iptables stop
chkconfig iptables off
#关闭iptables防火墙
sed -i '/^SELINUX/s/enforcing/disabled/' /etc/selinux/config
setenforce 0
#关闭selinux
vi /etc/sysconfig/network
#HOSTNAME=[]
hostname []
#修改主机名HOSTNAME,分别修改为ldapsrv01.contoso.com和ldapsrv02.contoso.com
vi /etc/hosts
添加如下两行:
192.168.49.138 ldapsrv01.contoso.com ldapsrv01
192.168.49.139 ldapsrv02.contoso.com ldapsrv02
2、安装openldap
这里安装就使用之前的脚本来进行自动化安装了,脚本在之前的文章中,两台CentOS都需要安装。
chmod +x openldap_install.sh
./openldap_install.sh
[root@ldapsrv01 ~]# ./openldap_install.sh
Please input your domain name:contoso.com
Install openldap package successful.
Service slapd start successful.
Please input the password for the administrator in your domain:123456
Change settings of rsyslog successful.
config file testing succeeded
Slaptest with configure file successful.
Start slapd service successful.
3、导入数据
[root@ldapsrv01 ~]# cat base.ldif
dn: dc=contoso,dc=com
dc: contoso
objectClass: top
objectClass: domain
dn: ou=People,dc=contoso,dc=com
ou: People
objectClass: top
objectClass: organizationalUnit
dn: ou=Group,dc=contoso,dc=com
ou: Group
objectClass: top
objectClass: organizationalUnit
dn: cn=tech,ou=group,dc=contoso,dc=com
objectClass: posixGroup
description: Technology
gidNumber: 10001
cn: tech
[root@ldapsrv01 ~]# cat group.ldif
dn: cn=user1,ou=Group,dc=contoso,dc=com
objectClass: posixGroup
objectClass: top
cn: user1
userPassword: {crypt}x
gidNumber: 10011
dn: cn=user2,ou=Group,dc=contoso,dc=com
objectClass: posixGroup
objectClass: top
cn: user2
userPassword: {crypt}x
gidNumber: 10012
dn: cn=user3,ou=Group,dc=contoso,dc=com
objectClass: posixGroup
objectClass: top
cn: user3
userPassword: {crypt}x
gidNumber: 10013
[root@ldapsrv01 ~]# cat people.ldif
dn: uid=user1,ou=People,dc=contoso,dc=com
uid: user1
cn: user1
objectClass: account
objectClass: posixAccount
objectClass: top
objectClass: shadowAccount
userPassword: {crypt}$6$Zs9mXyPO$QdqHS8nA/vyjUdnSWLIpM4QiaPtsca1WllXu0dWQOgTza2Qr4TcC3sHbAbJsWI0KannwnM.zFFroqxzglFfJT0
shadowLastChange: 17053
shadowMin: 0
shadowMax: 99999
shadowWarning: 7
loginShell: /bin/bash
uidNumber: 10011
gidNumber: 10011
homeDirectory: /home/user1
dn: uid=user2,ou=People,dc=contoso,dc=com
uid: user2
cn: user2
objectClass: account
objectClass: posixAccount
objectClass: top
objectClass: shadowAccount
userPassword: {crypt}$6$0dHBettP$u4vVTWuVkRN8NGIecG5O7VSnFDCtcQF/623lLY4Ih6RXORfFcRxh9fFdvssYeg6QAw1KY4LKtk.zwzdVXH2rh1
shadowLastChange: 17053
shadowMin: 0
shadowMax: 99999
shadowWarning: 7
loginShell: /bin/bash
uidNumber: 10012
gidNumber: 10012
homeDirectory: /home/user2
dn: uid=user3,ou=People,dc=contoso,dc=com
uid: user3
cn: user3
objectClass: account
objectClass: posixAccount
objectClass: top
objectClass: shadowAccount
userPassword: {crypt}$6$CXSotuEN$QSo5gJFlsJ6uZhqaK8qDto.5u2WXwvWSV1JqVP9WMOUVhxZXY8I.XMEUojwGGwpSYY1OtY2Sl/J7dzSk1ey6F/
shadowLastChange: 17053
shadowMin: 0
shadowMax: 99999
shadowWarning: 7
loginShell: /bin/bash
uidNumber: 10013
gidNumber: 10013
homeDirectory: /home/user3
[root@ldapsrv01 ~]# ldapadd -x -D "cn=admin,dc=contoso,dc=com" -w123456 -f base.ldif
adding new entry "dc=contoso,dc=com"
adding new entry "ou=People,dc=contoso,dc=com"
adding new entry "ou=Group,dc=contoso,dc=com"
adding new entry "cn=tech,ou=group,dc=contoso,dc=com"
[root@ldapsrv01 ~]# ldapadd -x -D "cn=admin,dc=contoso,dc=com" -w123456 -f group.ldif
adding new entry "cn=user1,ou=Group,dc=contoso,dc=com"
adding new entry "cn=user2,ou=Group,dc=contoso,dc=com"
adding new entry "cn=user3,ou=Group,dc=contoso,dc=com"
[root@ldapsrv01 ~]# ldapadd -x -D "cn=admin,dc=contoso,dc=com" -w123456 -f people.ldif
adding new entry "uid=user1,ou=People,dc=contoso,dc=com"
adding new entry "uid=user2,ou=People,dc=contoso,dc=com"
adding new entry "uid=user3,ou=People,dc=contoso,dc=com"
当然,你可以在两台server分别进行导入,或者在一台server上进行导入,然后再将数据导出到一个ldif文件中,然后导入到另外一台server上,这个就不再多做说明了,注意,要保证两台server上的数据是一致的。
ldapsearch -x -b "dc=contoso,dc=com"
# 可以在两个ldap server上查询,可结果是否一致
注:这里的数据并非一定按照我贴出来的,只是说ldap中要有数据,而且两个ldap server要保持一致。
4、配置Master replica
cp /etc/openldap/slapd.conf /etc/openldap/slapd.conf.bak$(date +%F)
vi /etc/openldap/slapd.conf
[root@ldapsrv01 ~]# diff /etc/openldap/slapd.conf.bak2016-09-20 /etc/openldap/slapd.conf
35c35
< # modulepath /usr/lib64/openldap
---
> modulepath /usr/lib64/openldap
57c57
< # moduleload syncprov.la
---
> moduleload syncprov.la
135a136,140
> # master replia server start
> overlay syncprov
> syncprov-checkpoint 100 10
> syncprov-sessionlog 100
>
注:这里对slapd.conf文件所做的修改如下:
1)取消了modulepath /usr/lib64/openldap之前的注释
2)取消了moduleload syncprov.la之前的注释
3)在index nisMapName,nisMapEntry eq,pres,sub这一行之后添加如下内容:
# master replia server start
overlay syncprov
syncprov-checkpoint 100 10
syncprov-sessionlog 100
rm -rf /etc/openldap/slapd.d/*
#我这里没有备份,如果是生产环境,也可以先做备份再进行删除
slaptest -u
slaptest -f /etc/openldap/slapd.conf -F /etc/openldap/slapd.d/
chown -R ldap. /etc/openldap/slapd.d/
注意:如果上面两条命令的结果都是succeeded(如下)的话,就可以重新启动slapd服务了。
[root@ldapsrv01 ~]# slaptest -u
config file testing succeeded
[root@ldapsrv01 ~]# slaptest -f /etc/openldap/slapd.conf -F /etc/openldap/slapd.d/
config file testing succeeded
如果上面的操作不成功,就需要根据错误信息重新编辑slapd.conf文件。
service slapd restart
#最后一步,重启slapd服务,至此主节点的配置完成。
5、配置Slave replica
cp /etc/openldap/slapd.conf /etc/openldap/slapd.conf.bak$(date +%F)
vi /etc/openldap/slapd.conf
[root@ldapsrv02 ~]# diff /etc/openldap/slapd.conf.bak2016-09-20 /etc/openldap/slapd.conf
35c35
< # modulepath /usr/lib64/openldap
---
> modulepath /usr/lib64/openldap
57c57
< # moduleload syncprov.la
---
> moduleload syncprov.la
135a136,138
> # slave replica statement start
> syncrepl rid=123 provider=ldap://ldapsrv01.contoso.com:389 type=refreshOnly interval=00:00:01:00 searchbase="dc=contoso,dc=com"scope=sub attrs="*" schemachecking=off bindmethod=simplebinddn="cn=admin,dc=contoso,dc=com" credentials=123456
>
注:这里对slapd.conf文件所做的修改如下:
1)取消了modulepath /usr/lib64/openldap之前的注释
2)取消了moduleload syncprov.la之前的注释
3)在index nisMapName,nisMapEntry eq,pres,sub这一行之后添加如下内容:
# slave replica statement start
syncrepl rid=123 provider=ldap://ldapsrv01.contoso.com:389 type=refreshOnly interval=00:00:01:00 searchbase="dc=contoso,dc=com" scope=sub attrs="*" schemachecking=off bindmethod=simple binddn="cn=admin,dc=contoso,dc=com" credentials=123456
4)注意,上面的syncrepl是在一行中,虽然排版上进行了调整,但是不是换行而是tab。
rm -rf /etc/openldap/slapd.d/*
slaptest -u
slaptest -f /etc/openldap/slapd.conf -F /etc/openldap/slapd.d/
chown -R ldap. /etc/openldap/slapd.d/
service slapd restart
注意:可能在配置过程中出现如下错误:
[root@ldapsrv02 ~]# slaptest -f /etc/openldap/slapd.conf -F /etc/openldap/slapd.d/
57e0be4f syncrepl rid=123 searchbase="dc=contoso,dc=com": no retry defined, using default
config file testing succeeded
[root@ldapsrv02 ~]# service slapd restart
Stopping slapd: [ OK ]
Checking configuration files for slapd: [WARNING]
57e0be7b syncrepl rid=123 searchbase="dc=contoso,dc=com": no retry defined, using default
config file testing succeeded
Starting slapd: [ OK ]
上面的错误提示,是没有指定retry参数,但是我试着添加了retry参数也还是这个错误,但是经测试这个不影响主从同步的运行,所以不做过多的处理。
6、测试主从同步
i.在Master上导入一个新的用户
[root@ldapsrv01 ~]# cat test.ldif
dn: uid=test,ou=People,dc=contoso,dc=com
uid: test
cn: test
objectClass: account
objectClass: posixAccount
objectClass: top
objectClass: shadowAccount
userPassword:: e2NyeXB0fSQ2JENYU290dUVOJFFTbzVnSkZsc0o2dVpocWFLOHFEdG8uNXUyV1h
3dldTVjFKcVZQOVdNT1VWaHhaWFk4SS5YTUVVb2p3R0d3cFNZWTFPdFkyU2wvSjdkelNrMWV5NkYv
shadowLastChange: 17053
shadowMin: 0
shadowMax: 99999
shadowWarning: 7
loginShell: /bin/sh
uidNumber: 10077
gidNumber: 10001
homeDirectory: /home/test
[root@ldapsrv01 ~]# ldapadd -x -D "cn=admin,dc=contoso,dc=com" -w123456 -f test.ldif
adding new entry "uid=test,ou=People,dc=contoso,dc=com"
ii.在Master和Slave上分别进行查询
[root@ldapsrv01 ~]# ldapsearch -x -H ldap://ldapsrv01.contoso.com -b "dc=contoso,dc=com" |grep uid=test
dn: uid=test,ou=People,dc=contoso,dc=com
[root@ldapsrv01 ~]# ldapsearch -x -H ldap://ldapsrv02.contoso.com -b "dc=contoso,dc=com" |grep uid=test
dn: uid=test,ou=People,dc=contoso,dc=com
iii.在Master上删除刚刚创建的用户
[root@ldapsrv01 ~]# ldapdelete -x -D "cn=admin,dc=contoso,dc=com" -w123456 "uid=test,ou=People,dc=contoso,dc=com"
iv.在Master和Slave上再进行查询
[root@ldapsrv01 ~]# ldapsearch -x -H ldap://ldapsrv01.contoso.com -b "dc=contoso,dc=com" |grep uid=test
[root@ldapsrv01 ~]# ldapsearch -x -H ldap://ldapsrv02.contoso.com -b "dc=contoso,dc=com" |grep uid=test
测试结果,主从配置成功。
补充:由于在syncrepl中slave是refreshOnly,相当于从节点是只读的,这时不允许在从节点导入或者删除用户,否则会出现错误,如下所示。
[root@ldapsrv02 ~]# ldapadd -x -D "cn=admin,dc=contoso,dc=com" -w123456 -f test.ldif
adding new entry "uid=test,ou=People,dc=contoso,dc=com"
ldap_add: Server is unwilling to perform (53)
additional info: shadow context; no update referral
[root@ldapsrv02 ~]# ldapdelete -x -D "cn=admin,dc=contoso,dc=com" -w123456 "uid=test,ou=People,dc=contoso,dc=com"
ldap_delete: Server is unwilling to perform (53)
additional info: shadow context; no update referral
7、ldap同步日志记录
Sep 20 13:21:43 ldapsrv02 slapd[1792]: daemon: epoll: listen=8 active_threads=0 tvp=zero
Sep 20 13:21:43 ldapsrv02 slapd[1792]: daemon: epoll: listen=9 active_threads=0 tvp=zero
Sep 20 13:21:43 ldapsrv02 slapd[1792]: => bdb_filter_candidates
Sep 20 13:21:43 ldapsrv02 slapd[1792]: #011AND
Sep 20 13:21:43 ldapsrv02 slapd[1792]: => bdb_list_candidates 0xa0
Sep 20 13:21:43 ldapsrv02 slapd[1792]: => bdb_filter_candidates
Sep 20 13:21:43 ldapsrv02 slapd[1792]: #011EQUALITY
Sep 20 13:21:43 ldapsrv02 slapd[1792]: <= bdb_equality_candidates: (entryUUID) not indexed
Sep 20 13:21:43 ldapsrv02 slapd[1792]: <= bdb_filter_candidates: id=-1 first=1 last=11
Sep 20 13:21:43 ldapsrv02 slapd[1792]: <= bdb_list_candidates: id=-1 first=1 last=11
Sep 20 13:21:43 ldapsrv02 slapd[1792]: <= bdb_filter_candidates: id=-1 first=1 last=11
Sep 20 13:21:43 ldapsrv02 slapd[1792]: => test_filter
Sep 20 13:21:43 ldapsrv02 slapd[1792]: EQUALITY
Sep 20 13:21:43 ldapsrv02 slapd[1792]: <= test_filter 5
Sep 20 13:21:43 ldapsrv02 slapd[1792]: => test_filter
Sep 20 13:21:43 ldapsrv02 slapd[1792]: EQUALITY
Sep 20 13:21:43 ldapsrv02 slapd[1792]: <= test_filter 5
Sep 20 13:21:43 ldapsrv02 slapd[1792]: => test_filter
Sep 20 13:21:43 ldapsrv02 slapd[1792]: EQUALITY
Sep 20 13:21:43 ldapsrv02 slapd[1792]: <= test_filter 5
Sep 20 13:21:43 ldapsrv02 slapd[1792]: => test_filter
Sep 20 13:21:43 ldapsrv02 slapd[1792]: EQUALITY
Sep 20 13:21:43 ldapsrv02 slapd[1792]: <= test_filter 5
Sep 20 13:21:43 ldapsrv02 slapd[1792]: => test_filter
Sep 20 13:21:43 ldapsrv02 slapd[1792]: EQUALITY
Sep 20 13:21:43 ldapsrv02 slapd[1792]: <= test_filter 5
Sep 20 13:21:43 ldapsrv02 slapd[1792]: => test_filter
Sep 20 13:21:43 ldapsrv02 slapd[1792]: EQUALITY
Sep 20 13:21:43 ldapsrv02 slapd[1792]: <= test_filter 5
Sep 20 13:21:43 ldapsrv02 slapd[1792]: => test_filter
Sep 20 13:21:43 ldapsrv02 slapd[1792]: EQUALITY
Sep 20 13:21:43 ldapsrv02 slapd[1792]: <= test_filter 5
Sep 20 13:21:43 ldapsrv02 slapd[1792]: => test_filter
Sep 20 13:21:43 ldapsrv02 slapd[1792]: EQUALITY
Sep 20 13:21:43 ldapsrv02 slapd[1792]: <= test_filter 5
Sep 20 13:21:43 ldapsrv02 slapd[1792]: => test_filter
Sep 20 13:21:43 ldapsrv02 slapd[1792]: EQUALITY
Sep 20 13:21:43 ldapsrv02 slapd[1792]: <= test_filter 5
Sep 20 13:21:43 ldapsrv02 slapd[1792]: => test_filter
Sep 20 13:21:43 ldapsrv02 slapd[1792]: EQUALITY
Sep 20 13:21:43 ldapsrv02 slapd[1792]: <= test_filter 5
Sep 20 13:21:43 ldapsrv02 slapd[1792]: => test_filter
Sep 20 13:21:43 ldapsrv02 slapd[1792]: EQUALITY
Sep 20 13:21:43 ldapsrv02 slapd[1792]: <= test_filter 6
Sep 20 13:22:43 ldapsrv02 slapd[1792]: daemon: epoll: listen=7 active_threads=0 tvp=zero
Sep 20 13:22:43 ldapsrv02 slapd[1792]: daemon: epoll: listen=8 active_threads=0 tvp=zero
Sep 20 13:22:43 ldapsrv02 slapd[1792]: daemon: epoll: listen=9 active_threads=0 tvp=zero
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: activity on 1 descriptor
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: activity on:
Sep 20 13:23:31 ldapsrv02 slapd[1792]:
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: epoll: listen=7 active_threads=0 tvp=zero
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: epoll: listen=8 busy
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: epoll: listen=9 active_threads=0 tvp=zero
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: listen=8, new connection on 11
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: added 11r (active) listener=(nil)
Sep 20 13:23:31 ldapsrv02 slapd[1792]: conn=1001 fd=11 ACCEPT from IP=[::1]:42504 (IP=[::]:389)
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: activity on 1 descriptor
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: activity on:
Sep 20 13:23:31 ldapsrv02 slapd[1792]:
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: epoll: listen=7 active_threads=0 tvp=zero
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: epoll: listen=8 active_threads=0 tvp=zero
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: epoll: listen=9 active_threads=0 tvp=zero
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: activity on 1 descriptor
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: activity on:
Sep 20 13:23:31 ldapsrv02 slapd[1792]: 11r
Sep 20 13:23:31 ldapsrv02 slapd[1792]:
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: read active on 11
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: epoll: listen=7 active_threads=0 tvp=zero
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: epoll: listen=8 active_threads=0 tvp=zero
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: epoll: listen=9 active_threads=0 tvp=zero
Sep 20 13:23:31 ldapsrv02 slapd[1792]: conn=1001 op=0 BIND dn="" method=128
Sep 20 13:23:31 ldapsrv02 slapd[1792]: conn=1001 op=0 RESULT tag=97 err=0 text=
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: activity on 1 descriptor
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: activity on:
Sep 20 13:23:31 ldapsrv02 slapd[1792]:
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: epoll: listen=7 active_threads=0 tvp=zero
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: epoll: listen=8 active_threads=0 tvp=zero
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: epoll: listen=9 active_threads=0 tvp=zero
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: activity on 1 descriptor
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: activity on:
Sep 20 13:23:31 ldapsrv02 slapd[1792]: 11r
Sep 20 13:23:31 ldapsrv02 slapd[1792]:
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: read active on 11
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: epoll: listen=7 active_threads=0 tvp=zero
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: epoll: listen=8 active_threads=0 tvp=zero
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: epoll: listen=9 active_threads=0 tvp=zero
Sep 20 13:23:31 ldapsrv02 slapd[1792]: begin get_filter
Sep 20 13:23:31 ldapsrv02 slapd[1792]: PRESENT
Sep 20 13:23:31 ldapsrv02 slapd[1792]: end get_filter 0
Sep 20 13:23:31 ldapsrv02 slapd[1792]: conn=1001 op=1 SRCH base="dc=contoso,dc=com" scope=2 deref=0 filter="(objectClass=*)"
Sep 20 13:23:31 ldapsrv02 slapd[1792]: => bdb_filter_candidates
Sep 20 13:23:31 ldapsrv02 slapd[1792]: #011AND
Sep 20 13:23:31 ldapsrv02 slapd[1792]: => bdb_list_candidates 0xa0
Sep 20 13:23:31 ldapsrv02 slapd[1792]: => bdb_filter_candidates
Sep 20 13:23:31 ldapsrv02 slapd[1792]: #011PRESENT
Sep 20 13:23:31 ldapsrv02 slapd[1792]: <= bdb_filter_candidates: id=-1 first=1 last=11
Sep 20 13:23:31 ldapsrv02 slapd[1792]: <= bdb_list_candidates: id=-1 first=1 last=11
Sep 20 13:23:31 ldapsrv02 slapd[1792]: <= bdb_filter_candidates: id=-1 first=1 last=11
Sep 20 13:23:31 ldapsrv02 slapd[1792]: => test_filter
Sep 20 13:23:31 ldapsrv02 slapd[1792]: PRESENT
Sep 20 13:23:31 ldapsrv02 slapd[1792]: <= test_filter 6
Sep 20 13:23:31 ldapsrv02 slapd[1792]: => test_filter
Sep 20 13:23:31 ldapsrv02 slapd[1792]: PRESENT
Sep 20 13:23:31 ldapsrv02 slapd[1792]: <= test_filter 6
Sep 20 13:23:31 ldapsrv02 slapd[1792]: => test_filter
Sep 20 13:23:31 ldapsrv02 slapd[1792]: PRESENT
Sep 20 13:23:31 ldapsrv02 slapd[1792]: <= test_filter 6
Sep 20 13:23:31 ldapsrv02 slapd[1792]: => test_filter
Sep 20 13:23:31 ldapsrv02 slapd[1792]: PRESENT
Sep 20 13:23:31 ldapsrv02 slapd[1792]: <= test_filter 6
Sep 20 13:23:31 ldapsrv02 slapd[1792]: => test_filter
Sep 20 13:23:31 ldapsrv02 slapd[1792]: PRESENT
Sep 20 13:23:31 ldapsrv02 slapd[1792]: <= test_filter 6
Sep 20 13:23:31 ldapsrv02 slapd[1792]: => test_filter
Sep 20 13:23:31 ldapsrv02 slapd[1792]: PRESENT
Sep 20 13:23:31 ldapsrv02 slapd[1792]: <= test_filter 6
Sep 20 13:23:31 ldapsrv02 slapd[1792]: => test_filter
Sep 20 13:23:31 ldapsrv02 slapd[1792]: PRESENT
Sep 20 13:23:31 ldapsrv02 slapd[1792]: <= test_filter 6
Sep 20 13:23:31 ldapsrv02 slapd[1792]: => test_filter
Sep 20 13:23:31 ldapsrv02 slapd[1792]: PRESENT
Sep 20 13:23:31 ldapsrv02 slapd[1792]: <= test_filter 6
Sep 20 13:23:31 ldapsrv02 slapd[1792]: => test_filter
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: activity on 1 descriptor
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: activity on:
Sep 20 13:23:31 ldapsrv02 slapd[1792]:
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: epoll: listen=7 active_threads=0 tvp=zero
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: epoll: listen=8 active_threads=0 tvp=zero
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: epoll: listen=9 active_threads=0 tvp=zero
Sep 20 13:23:31 ldapsrv02 slapd[1792]: PRESENT
Sep 20 13:23:31 ldapsrv02 slapd[1792]: <= test_filter 6
Sep 20 13:23:31 ldapsrv02 slapd[1792]: => test_filter
Sep 20 13:23:31 ldapsrv02 slapd[1792]: PRESENT
Sep 20 13:23:31 ldapsrv02 slapd[1792]: <= test_filter 6
Sep 20 13:23:31 ldapsrv02 slapd[1792]: conn=1001 op=1 SEARCH RESULT tag=101 err=0 nentries=10 text=
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: activity on 1 descriptor
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: activity on:
Sep 20 13:23:31 ldapsrv02 slapd[1792]: 11r
Sep 20 13:23:31 ldapsrv02 slapd[1792]:
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: read active on 11
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: epoll: listen=7 active_threads=0 tvp=zero
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: epoll: listen=8 active_threads=0 tvp=zero
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: epoll: listen=9 active_threads=0 tvp=zero
Sep 20 13:23:31 ldapsrv02 slapd[1792]: conn=1001 op=2 UNBIND
Sep 20 13:23:31 ldapsrv02 slapd[1792]: connection_closing: readying conn=1001 sd=11 for close
Sep 20 13:23:31 ldapsrv02 slapd[1792]: connection_resched: attempting closing conn=1001 sd=11
Sep 20 13:23:31 ldapsrv02 slapd[1792]: connection_close: deferring conn=1001 sd=11
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: activity on 1 descriptor
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: activity on:
Sep 20 13:23:31 ldapsrv02 slapd[1792]:
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: epoll: listen=7 active_threads=0 tvp=zero
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: epoll: listen=8 active_threads=0 tvp=zero
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: epoll: listen=9 active_threads=0 tvp=zero
Sep 20 13:23:31 ldapsrv02 slapd[1792]: connection_resched: attempting closing conn=1001 sd=11
Sep 20 13:23:31 ldapsrv02 slapd[1792]: daemon: removing 11
Sep 20 13:23:31 ldapsrv02 slapd[1792]: conn=1001 fd=11 closed
Sep 20 13:23:39 ldapsrv02 slapd[1792]: daemon: epoll: listen=7 active_threads=0 tvp=zero
