Zimbra offers Open Source email server software and shared calendar for Linux and the Mac
Go Back   Zimbra :: Forums > Zimbra Collaboration Suite > Installation
Reload this Page [SOLVED] Zimbra Master + Replica Upgrade

Welcome to the Zimbra :: Forums!
Welcome, if you would like to post a comment please register. We also encourage you to explore all things Zimbra with our team and members of the community.

Reply
 
LinkBack Thread Tools Search this Thread Display Modes
  #1 (permalink)  
Old 03-29-2010, 05:31 AM
Senior Member
  
Posts: 73
Default [SOLVED] Zimbra Master + Replica Upgrade
Hi

My System:
OS: Ubuntu 8.04 LTS
Zimbra Master (m01-zimbra.local)
Zimbra replica01 (r01-zimbra.local)
Zimbra replica02 (r02-zimbra.local)

Yesterday i have upgraded alle Servers from 6.03 to 6.05. After that the System does not work anymore

If i create a new user on the Master the user is not replied to the replicas.
On the replicas i get the following error in the "/var/log/zimbra.log":
Code:
Mar 29 14:10:30 r01-zimbra slapd[3808]: slap_client_connect: URI=ldap://m01-zimbra.local:389 Error, ldap_start_tls failed (-11) 
Mar 29 14:10:30 r01-zimbra slapd[3808]: do_syncrepl: rid=100 rc -11 retrying
For this i have found the following:
LDAP / Replication on 5.x -> 6.x Upgrade

So i have tried a few things. In the "/opt/zimbra/conf/ca/" folter are two files and one Symlink
Code:
ls -alhs
insgesamt 16K
4,0K drwxr-xr-x 2 root   root   4,0K 2010-03-29 13:59 .
4,0K drwxr-xr-x 9 zimbra zimbra 4,0K 2010-03-29 14:03 ..
   0 lrwxrwxrwx 1 root   root      6 2010-03-29 13:59 2767710d.0 -> ca.pem
4,0K -rw-r----- 1 zimbra zimbra  887 2010-03-29 13:59 ca.key
4,0K -rw-r----- 1 zimbra zimbra  993 2010-03-29 13:59 ca.pem
Tests:
Delete the three files on the replicas and replace it with the files from the master -> Reboot everything -> Does not work
Create new certificates on the WebGUI -> Reboot everything -> Does not work
Replace the three files on all servers with the files from my backups -> Reboot everything -> Does not work

I don't understand why nothing of this is working. In my backups the private key (ca.key), the cert (ca.pem) and the symlink are the same on all machines.

Has someone an idea how i get my replicas working?

yogg

Edit:
I have also found the Bugreport to this:
Bug 45048 – LDAP replication fails with self-signed certificates and different certificate authorities

The Bug is marked as RESOLVED, so there should be a fin in 6.0.6 oder 6.0.7. But i can't wait for this
The promoted workarounds does also not work (see above). Has someone a working workaround for this Problem?
__________________
Release 7.1.2_GA_3268.UBUNTU8_64 UBUNTU8_64 NETWORK edition.
Last edited by yogg1; 03-29-2010 at 07:02 AM..
Reply With Quote
  #2 (permalink)  
Old 03-31-2010, 12:24 AM
Senior Member
  
Posts: 73
Default
The Problem is solved now.

The only thing to do is, replacing the ca.pem file on all replicas with the ca.pem file from the master and create a new symlink (with the hash).
This works fine with "c_rehash".

yogg
__________________
Release 7.1.2_GA_3268.UBUNTU8_64 UBUNTU8_64 NETWORK edition.
Reply With Quote
Reply

« Previous Thread | Today's Posts or Week's Posts | Next Thread »

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode


Similar Threads

Product Information

Why Join?

Registering let's you ask questions, makes it easier to search, displays any files attached to posts, and notifies you about replies.

blog.zimbra.com


Home - Blog - Contact Us - Archive - Top


 

SEO by vBSEO ©2011, Crawlability, Inc.