From users-return-4658-apmail-directory-users-archive=directory.apache.org@directory.apache.org  Thu May 10 10:26:42 2012
Return-Path: <users-return-4658-apmail-directory-users-archive=directory.apache.org@directory.apache.org>
X-Original-To: apmail-directory-users-archive@www.apache.org
Delivered-To: apmail-directory-users-archive@www.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id C43409995
	for <apmail-directory-users-archive@www.apache.org>; Thu, 10 May 2012 10:26:42 +0000 (UTC)
Received: (qmail 65190 invoked by uid 500); 10 May 2012 10:26:42 -0000
Delivered-To: apmail-directory-users-archive@directory.apache.org
Received: (qmail 65160 invoked by uid 500); 10 May 2012 10:26:42 -0000
Mailing-List: contact users-help@directory.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:users-help@directory.apache.org>
List-Unsubscribe: <mailto:users-unsubscribe@directory.apache.org>
List-Post: <mailto:users@directory.apache.org>
List-Id: <users.directory.apache.org>
Reply-To: users@directory.apache.org
Delivered-To: mailing list users@directory.apache.org
Received: (qmail 65147 invoked by uid 99); 10 May 2012 10:26:42 -0000
Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136)
    by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 10 May 2012 10:26:42 +0000
X-ASF-Spam-Status: No, hits=-0.7 required=5.0
	tests=RCVD_IN_DNSWL_LOW,SPF_PASS
X-Spam-Check-By: apache.org
Received-SPF: pass (athena.apache.org: domain of ayyagarikiran@gmail.com designates 209.85.213.50 as permitted sender)
Received: from [209.85.213.50] (HELO mail-yw0-f50.google.com) (209.85.213.50)
    by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 10 May 2012 10:26:35 +0000
Received: by yhjj63 with SMTP id j63so1647392yhj.37
        for <users@directory.apache.org>; Thu, 10 May 2012 03:26:14 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20120113;
        h=mime-version:sender:in-reply-to:references:date
         :x-google-sender-auth:message-id:subject:from:to:content-type
         :content-transfer-encoding;
        bh=LbOYjMO/nmJyh74CIMh83qdtfOlGBKIF7h3TGGQjy58=;
        b=udVjqfxUtMoSvoqO+odYnfSyAEZpeZPxdxtcVeDmtFftaPZkZapomMXQgTImileBun
         FXecqp6osUqlAoCKUFT/MN4/E8bM7HR1ZRMyDnTapuwxmBvS0mGygu/R1IfFygomKnR9
         LXIxNBoAJ/2O9EOAFWngXAZOMg1HIeNbXakyBWd+Td6t8cVDD1mihgBzJKvpi8Bghcfw
         ESeQiEBO4TnP3/QV/rMHEqzFqGkgSb24aeATOUTDCnFvxoMxG8AzQFemlDJbr/X3VpAl
         Rxj8mj+M+1FpjLlnXTpRTeC03kKa7AqhD0EBD/Vf+6EGxGw19R5Q/yzV5eFSJERD1kpA
         Aerw==
MIME-Version: 1.0
Received: by 10.50.173.69 with SMTP id bi5mr1999598igc.38.1336645574520; Thu,
 10 May 2012 03:26:14 -0700 (PDT)
Sender: ayyagarikiran@gmail.com
Received: by 10.42.163.2 with HTTP; Thu, 10 May 2012 03:26:14 -0700 (PDT)
In-Reply-To: <4FAB970F.5030707@gmail.com>
References: <4FAB72D5.6050406@gmail.com>
	<4FAB75A1.8050409@gmail.com>
	<4FAB778F.2050209@gmail.com>
	<CABzFU-eZ7PD=X9qxeeFmmUJEASnVjf6Mw5A6Br8rp+v7039QHQ@mail.gmail.com>
	<4FAB7EAF.2030708@gmail.com>
	<CABzFU-dVG1Oz6vuXQPYL1sFoZZoFF94_=4WiMdfoArKqOySgAw@mail.gmail.com>
	<4FAB970F.5030707@gmail.com>
Date: Thu, 10 May 2012 15:56:14 +0530
X-Google-Sender-Auth: omNwiMxdYAasdh7LbzuL5iwnAvA
Message-ID: <CABzFU-dxiyYOOPyqYFTYX-dT1bn4KJ0i_GQ01DNXqyJGQxsX5w@mail.gmail.com>
Subject: Re: replication partially working
From: Kiran Ayyagari <kayyagari@apache.org>
To: users@directory.apache.org
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
X-Virus-Checked: Checked by ClamAV on apache.org

this error is not related to replication, it is a password policy related e=
rror
some user is trying to change the password but is giving a value that he ha=
s
used earlier as password.


On Thu, May 10, 2012 at 3:53 PM, houmles <houmles@gmail.com> wrote:
> This error shows on slave server. I happens only when i tried to modify
> any attribute. DN syncing works and don't have any errors.
>
> jvm 1 =A0 =A0| [12:18:39] ERROR
> [org.apache.directory.server.ldap.replication.consumer.ReplicationConsume=
rImpl]
> - invalid reuse of password present in password history
> jvm 1 =A0 =A0|
> org.apache.directory.shared.ldap.model.exception.LdapOperationException:
> invalid reuse of password present in password history
> jvm 1 =A0 =A0| =A0 =A0 at
> org.apache.directory.server.core.authn.AuthenticationInterceptor.modify(A=
uthenticationInterceptor.java:956)
> jvm 1 =A0 =A0| =A0 =A0 at
> org.apache.directory.server.core.api.interceptor.BaseInterceptor.next(Bas=
eInterceptor.java:599)
> jvm 1 =A0 =A0| =A0 =A0 at
> org.apache.directory.server.core.normalization.NormalizationInterceptor.m=
odify(NormalizationInterceptor.java:248)
> jvm 1 =A0 =A0| =A0 =A0 at
> org.apache.directory.server.core.DefaultOperationManager.modify(DefaultOp=
erationManager.java:660)
> jvm 1 =A0 =A0| =A0 =A0 at
> org.apache.directory.server.core.shared.DefaultCoreSession.modify(Default=
CoreSession.java:590)
> jvm 1 =A0 =A0| =A0 =A0 at
> org.apache.directory.server.core.shared.DefaultCoreSession.modify(Default=
CoreSession.java:564)
> jvm 1 =A0 =A0| =A0 =A0 at
> org.apache.directory.server.ldap.replication.consumer.ReplicationConsumer=
Impl.modify(ReplicationConsumerImpl.java:985)
> jvm 1 =A0 =A0| =A0 =A0 at
> org.apache.directory.server.ldap.replication.consumer.ReplicationConsumer=
Impl.handleSearchResult(ReplicationConsumerImpl.java:361)
> jvm 1 =A0 =A0| =A0 =A0 at
> org.apache.directory.server.ldap.replication.consumer.ReplicationConsumer=
Impl.doSyncSearch(ReplicationConsumerImpl.java:618)
> jvm 1 =A0 =A0| =A0 =A0 at
> org.apache.directory.server.ldap.replication.consumer.ReplicationConsumer=
Impl.startSync(ReplicationConsumerImpl.java:505)
> jvm 1 =A0 =A0| =A0 =A0 at
> org.apache.directory.server.ldap.replication.consumer.ReplicationConsumer=
Impl.start(ReplicationConsumerImpl.java:548)
> jvm 1 =A0 =A0| =A0 =A0 at
> org.apache.directory.server.ldap.LdapServer$2.run(LdapServer.java:660)
> jvm 1 =A0 =A0| =A0 =A0 at java.lang.Thread.run(Thread.java:722)
>
> On 05/10/2012 11:23 AM, Kiran Ayyagari wrote:
>> this looks valid, do you have any error logs?
>>
>> On Thu, May 10, 2012 at 2:09 PM, houmles <houmles@gmail.com> wrote:
>>> here it is:
>>>
>>> dn: ads-replconsumerid=3D1,ou=3DreplConsumers,ads-serverId=3DldapServer=
,ou=3Dservers
>>> =A0,ads-directoryServiceId=3Ddefault,ou=3Dconfig
>>> objectclass: top
>>> objectclass: ads-base
>>> objectclass: ads-replConsumer
>>> ads-replaliasderefmode: never
>>> ads-replattributes: *
>>> ads-replconsumerid: 1
>>> ads-replprovhostname: x.x.x.x
>>> ads-replprovport: 10389
>>> ads-replrefreshinterval: 60000
>>> ads-replrefreshnpersist: true
>>> ads-replsearchfilter: (objectClass=3D*)
>>> ads-replsearchscope: sub
>>> ads-replsearchsizelimit: 0
>>> ads-replsearchtimeout: 0
>>> ads-repluserdn: uid=3Dadmin,ou=3Dsystem
>>> ads-repluserpassword:: xxxxxxxxx
>>> ads-searchbasedn: dc=3Dxxx,dc=3Dxx
>>> ads-replstrictcertvalidation: false
>>> ads-replusetls: false
>>>
>>> On 05/10/2012 10:29 AM, Kiran Ayyagari wrote:
>>>> can you provide the complete entry data with DN
>>>>
>>>> ads-replConsumerId=3D<whatever-id-you-have-here>,ou=3DreplConsumers,ad=
s-serverId=3DldapServer,ou=3Dservers,ads-directoryServiceId=3Ddefault,ou=3D=
config
>>>>
>>>> (remove the seerver IP and user credentials if they are sensitive)
>>>>
>>>> On Thu, May 10, 2012 at 1:38 PM, houmles <houmles@gmail.com> wrote:
>>>>> ups, forgot to mention 2.0.0-M6
>>>>>
>>>>> On 05/10/2012 10:00 AM, Emmanuel L=E9charny wrote:
>>>>>> Le 5/10/12 9:48 AM, houmles a =E9crit :
>>>>>>> Hi,
>>>>>> Hi,
>>>>>>> I have fully working one ADS and want to replicate it to another. I
>>>>>>> followed some tutorial and managed to replicate it but only just DN=
's. I
>>>>>>> can't get to sync attributes inside.
>>>>>>>
>>>>>>> My setting are:
>>>>>>> ads-replsearchfilter: (objectClass=3D*)
>>>>>>> ads-replsearchscope: sub
>>>>>>>
>>>>>>> is that ok?
>>>>>>> I want to achieve full 1:1 replication.
>>>>>>>
>>>>>>> Thanks
>>>>>> Which ADS version are you using ?
>>>>>>
>>>>>>
>>>>
>>
>>



--=20
Kiran Ayyagari