Promoting Replica to LDAP Master
Only one master LDAP server can exist and this LDAP server is authoritative for user information, server configuration, etc. The instructions that follow explain how to promote a replica LDAP server to master and disable the previous LDAP master.
Promoting a Replica Server – Demoting the Master Server
Before you can promote a replica LDAP server to become the master LDAP server, your LDAP replication servers must be up and working correctly; that is the replica LDAP server(s) must be receiving LDAP updates from the master. See the Multi-Server Installation Guide, LDAP Replication Installation chapter.
To promote a replica server to be master
1. Shut down all services on ZCS, zmcontrol stop.
2. On the replica LDAP server that will be the new master LDAP server:
- a. Make a backup copy of the /opt/zimbra/conf/slapd.conf.in file in case you have to revert this server back to replica.
- b. Edit the /opt/zimbra/conf/slapd.conf.in file and delete the replication instructions from the file. The screen that follows is an example of the text you should be looking for.
- c. Edit the server’s local config file
zmlocalconfig –e ldap_master_url= <newmaster_directory_address>
- d. Change the LDAP host
zmlocalconfig –e ldap_host= <newmaster_directory_address>
3. Now you run zmmtainit to edit the ldap*.cf files in /opt/zimbra/conf to set the new master LDAP server as the authority for the MTA.These files tell Postfix how to connect to the LDAP server for various commands. If you are moving the directories, you might have Postfix pointing to a server that no longer runs LDAP, which will cause mail delivery to stop.
Note: zmmtainit should be run on the hosts that are running an MTA, but is not required on the other hosts.
As zimbra, type the following. You do not have to add the port, if you use the default port number 389.
/opt/zimbra/libexec/zmmtainit <master_ldap host> <ldap port>
4. Start the new LDAP master, type zmcontrol start. Then start up the services on all the other servers. At this point, services should be up and running on all hosts, and they should all be working off the new Master LDAP server.
Converting the master to be a replica
The old LDAP master can be disabled or it can be converted into a replica. To convert the old server to be a replica
- Remove the contents of its openLDAP directory
- Change that server’s local config file to designate it as a replica. Type
zmlocalconfig –e ldap_master_url= <master_directory_address>
zmlocalconfig –e ldap_is_master= false
- Run zmldapenablereplica to set up the replication account in the directory and make a copy of the master content to the replica LDAP server. See the instructions for LDAP Replication.