You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@directory.apache.org by "Pittman, Michael" <mp...@harris.com> on 2017/03/27 20:12:12 UTC
[ApacheDS] ads-replSearchFilter not working
Hi,
I have set up replication between some ApacheDS instances and everything has been working fine. I had the configuration 'ads-replSearchFilter' set to (objectClass=*) and everything was replicating as expected.
I have been given requirements recently not to replicate certain entries and I updated the ads-replSearchFilter configuration to do this, however, it is not working (everything is still being replicated). Here is what I did:
1. I changed the configuration 'ads-replSearchFilter' to (&(objectClass=*)(!(organizationalUnitName=hardcodedValue)))
2. When I create an entry that I don't want replicated I give it the attribute 'organizationalUnitName=hardcodedValue'
This should prevent the new entry from being replicated. I DID restart all of the ApacheDS servers after I made the configuration change. I also performed an ldapsearch with the filter '(&(objectClass=*)(!(organizationalUnitName=hardcodedValue)))' and it correctly returned only the entries without the attribute 'organizationalUnitName=hardcodedValue'.
It's also worth noting that the entries that I want replicated do not have the attribute organizationalUnitName at all. I am using ApacheDS version 2.0.0-M21.
Any ideas why my replication search filter is not working?
Thanks,
Michael Pittman
Software Engineer
CRITICAL NETWORKS / HARRIS CORPORATION
Mobile: (863) 517-1910
Re: [ApacheDS] ads-replSearchFilter not working
Posted by Kiran Ayyagari <ka...@apache.org>.
On Tue, Mar 28, 2017 at 1:42 AM, Pittman, Michael <mp...@harris.com>
wrote:
> Hi,
>
>
>
> I have set up replication between some ApacheDS instances and everything
> has been working fine. I had the configuration ‘ads-replSearchFilter’ set
> to (objectClass=*) and everything was replicating as expected.
>
>
>
> I have been given requirements recently not to replicate certain entries
> and I updated the ads-replSearchFilter configuration to do this, however,
> it is not working (everything is still being replicated). Here is what I
> did:
>
>
>
> 1. I changed the configuration ‘ads-replSearchFilter’ to
> (&(objectClass=*)(!(organizationalUnitName=hardcodedValue)))
>
> 2. When I create an entry that I don’t want replicated I give it the
> attribute ‘organizationalUnitName=hardcodedValue’
>
>
>
> This should prevent the new entry from being replicated. I DID restart all
> of the ApacheDS servers after I made the configuration change. I also
> performed an ldapsearch with the filter ‘(&(objectClass=*)(!(
> organizationalUnitName=hardcodedValue)))’ and it correctly returned only
> the entries without the attribute ‘organizationalUnitName=hardcodedValue’.
>
>
>
>
> It’s also worth noting that the entries that I want replicated do not have
> the attribute organizationalUnitName at all. I am using ApacheDS version
> 2.0.0-M21.
>
>
>
> Any ideas why my replication search filter is not working?
>
It appears to be a bug in SyncReplRequestHandler where the entry data is
not filtered as per
the specified filter.
Can you file a bug report with the details. I won't be able to look into it
right away but still it is worth
filing a bug.
Thank you.
>
>
> Thanks,
>
>
>
> *Michael Pittman*
>
> *Software Engineer*
>
> *CRITICAL NETWORKS / HARRIS CORPORATION*
>
> Mobile: (863) 517-1910 <0863%20517%201910>
>
>
>
Kiran Ayyagari