[Nagiosplug-devel] [ nagiosplug-New Plugins-1234998 ] ldap replication plugin for Sun One Directory Server 5.x

SourceForge.net noreply at sourceforge.net
Fri Jul 8 15:24:07 CEST 2005


New Plugins item #1234998, was opened at 2005-07-08 15:23
Message generated for change (Tracker Item Submitted) made by Item Submitter
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=541465&aid=1234998&group_id=29880

Please note that this message will contain a full copy of the comment thread,
including the initial issue submission, for this request,
not just the latest update.
Category: Perl plugin
Group: None
Status: Open
Resolution: None
Priority: 5
Submitted By: Larry Lile (lile)
Assigned to: Nobody/Anonymous (nobody)
Summary: ldap replication plugin for Sun One Directory Server 5.x

Initial Comment:
We've been using this plug-in and event handler where I
work
for 2 years, seems like we can't be the only ones who
need them.
                                                      
                                               
The check script checks the status of replication for a
single
host replica so it must be configured for each ldap
replica and
the database that is being replicated.
                                                      
                                               
The event-handler script will check all replication
agreements on
the master server and restart any failed replication
agreements.
                                                      
                                               
It's a little complicated, but if you are already running
Sun One Directory Server 5.x it should be fairly clear.
                                                      
                                               
You need a user in the cn=config branch that can read the
replication agreements and it must be able to write to the
agreements for the event-handler.  Here is an example,
the user, host and passwords are parameters to the scripts.
                                                      
                                               
dn: uid=nagios,cn=config
uid: nagios
givenName: nagios
objectClass: top
objectClass: person
objectClass: organizationalPerson
objectClass: inetorgperson
sn: nagios
cn: nagios
userPassword: xxxxxxxx
                                                      
                                               
And the aci to allow the check and event-handler,
remove write
for checking only.
                                                      
                                               
dn: cn=config
aci: (targetattr = "*")
 (target = "ldap:///cn=config")
 (targetfilter = objectclass=nsDS5ReplicationAgreement)
 (version 3.0;acl "Nagios Replication Checks";
 allow (read,compare,search,write)
 (userdn = "ldap:///uid=nagios,cn=config");)
                                                      
                                               
Sample nagios configuration:
                                                      
                                               
master-ldap is the master ldap host that services the
replication agreements, the ldap basedn is
dc=domain,dc=somewhere,dc=com and the
dns domain is domain.somewhere.com in the following
example.
                                                      
                                               
checkcommands.cfg -
define command{
        command_name    check_replica
        command_line    $USER1$/check_ds5replica -w 10
-c 15 -H $ARG1$ -b "dc=$ARG2$,dc=somewhere,dc=com"  -l
uid=nagios,cn=config -a password -r $HOSTNAME$$ARG3$
        }
define command{
        command_name    replica_update
        command_line   
$USER1$/eventhandlers/replication_update -H master-ldap
-l uid=nagios,cn=config -a password $SERVICESTATE$
$STATETYPE$ $SERVICEATTEMPT$
        }
                                                      
                                               
services.cfg -
define service{
        use                            
ldap-replica-service
        service_description             LDAP-Replica
        hostgroup_name                 
ldap_replica_servers
        check_command
check_replica!master-ldap!domain!.domain.somewhere.com
}
                                                      
                                               
services-templates.cfg-
define service{
        name                           
ldap-replica-service
        use                             generic-service
        service_description             LDAP-Replica
        is_volatile                     0
        check_period                    24x7
        max_check_attempts              5
        normal_check_interval           10
        retry_check_interval            2
        contact_groups                  ldap-admins
        notification_period             24x7
        notification_options            c,r
        check_command                   check_replica
        event_handler                   replica_update
        register                        0
        }
                                                      
                                               


----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=541465&aid=1234998&group_id=29880




More information about the Devel mailing list