LDAP

From Wikitech
(Difference between revisions)
Jump to: navigation, search
Line 16: Line 16:
  
 
If necessary restart it sitewide. :P
 
If necessary restart it sitewide. :P
 +
 +
== Server logging ==
 +
 +
slapd's logging stuff goes to a channel on syslog that's not logged by default. On a new server, you may have to manually edit syslog.conf and add something for local4.*
 +
 +
Then set an appropriate loglevel in /etc/openldap/slapd.conf
  
 
[[Category:Software]]
 
[[Category:Software]]

Revision as of 20:11, 4 November 2006

This page desperately needs to be filled out or brought up to date. If you're familiar with the operations of this part of the site, please help!

FIXME: There's almost no server info here

FIXME: What about client startup when servers are flaky?

Hosts should be to use LDAP for users and some other stuff.

setup LDAP client on new machine

  • run /home/wikipedia/bin/setup-ldap
  • copy zwinger:/etc/ldap.conf to the new machine

LDAP server is on srv1 (master) and srv2 (slave). failover should be automatic. to add new users, add them on srv1, then run /home/wikipedia/bin/ldapsync. srv2 will update automatically.

Overload

If the local caching daemon nscd dies on clients, the server can get badly overloaded and logins can fail.

If necessary restart it sitewide. :P

Server logging

slapd's logging stuff goes to a channel on syslog that's not logged by default. On a new server, you may have to manually edit syslog.conf and add something for local4.*

Then set an appropriate loglevel in /etc/openldap/slapd.conf

Retrieved from "http://wikitech-old.wikimedia.org/index.php?title=LDAP&oldid=10209"
Personal tools
Namespaces

Variants
Actions
Navigation
Ops documentation
Wiki
Toolbox