Uploaded image for project: 'OpenDJ'
  1. OpenDJ
  2. OPENDJ-7335

Invalid Credentials error when adding DS mixed topology with new DSRS already

    Details

    • Type: Bug
    • Status: Done
    • Priority: Critical
    • Resolution: Fixed
    • Affects Version/s: 7.0.0
    • Fix Version/s: 7.0.0
    • Component/s: replication
    • Labels:

      Description

      Found with 7.0.0-SNAPSHOT rev. ac6849f4e45 and 6.5.3.

      Test steps:

      1. Setup topology of three servers (6.5.3) DSRS-RS-DS [replication enabled and in sync]
      2. Setup and do not start DSRS, DS and RS servers (7.0.0)
      3. Configure 7.0.0 servers to be compatible with 6.5.3 (serverId, set-password-storage-scheme-prop [Salted SHA-512], set-password-policy-prop [Salted SHA-512])
        ./DJ/opendj/bin/dsconfig --offline set-global-configuration-prop --set server-id:3 -n
        ./DJ/opendj/bin/dsconfig --offline set-password-storage-scheme-prop --scheme-name "Salted SHA-512" --set enabled:true -n
        ./DJ/opendj/bin/dsconfig --offline set-password-policy-prop --policy-name "Default Password Policy" --add default-password-storage-scheme:"Salted SHA-512" --remove default-password-storage-scheme:PBKDF2-HMAC-SHA256 -n
        
      1. run dsrepl add-local-server... command on 7.0.0 (DSRS)
        ./DJ/opendj/bin/dsrepl add-local-server-to-pre-7-0-topology -h pyforge.example.com -p 4447 -D "cn=admin,cn=Administrators,cn=admin data" -w "password" -X --baseDn "dc=com"
        
      1. start the server
      2. initialize the server
        dsrepl initialize --fromServer 4 -h pyforge.example.com -p 4449 -D "uid=admin" -w password -X --baseDn "cn=admin data" --baseDn "cn=schema" --baseDn "dc=com"
        
      1. run dsrepl add-local-server... command on 7.0.0 (DS)
        ./DJ/opendj/bin/dsrepl add-local-server-to-pre-7-0-topology -h pyforge.example.com -p 4447 -D "cn=admin,cn=Administrators,cn=admin data" -w "password" -X --baseDn "dc=com"
        

      Last step fails with Invalid Credentials error:

      stderr 

      Cannot obtain a connection for one of the servers in the existing topology.
       The error was: RuntimeException(com.forgerock.opendj.cli.ClientException:
       Cannot obtain a connection to server 'pyforge.example.com:4449' from the
       existing topology. The error was: Invalid Credentials)
       Check the server error logs for additional details
      

      stdout

      Establishing connections ..... Done
       Checking registration information ..... Done
       Configuring the servers in the topology to talk to the local server .....
      

       

      The pyforge.example.com:4449 is previously added DSRS 7.0.0 server.

       

      Command to reproduce:

      ./run-pybot.py -v -s replication_group3.MixedTopologies -t complex_topo_added_to_dsrs_ds_topo opendj
      

        Attachments

          Activity

            People

            • Assignee:
              ondrej.fuchsik Ondrej Fuchsik
              Reporter:
              ondrej.fuchsik Ondrej Fuchsik
              Dev Assignee:
              Jean-Noël Rouvignac
            • Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: