install-path/bin/repldisc [-D bindDN] [-w password] [-j file ] [-t ] [-n ] [-a ] [-p port] [-T timeout] [-J file] [-W keypassword] [-K keydbpath] [-N certname] [-P certdbpath] [-e SSL port] [-b ReplicaRoot] -s | -S HostSpec
The repldisc command enables the discovery of a replication topology. Topology discovery starts with one server and constructs a graph of all known servers (using the RUVs and Replication Agreements). repldisc then prints an adjacency matrix describing the topology.
The following options are supported:
Specifies that only the arcs between pairs of connected hosts are printed. For more information, see EXAMPLES.
If the total line length of the output exceeds 80 characters, symbolic host names are used, accompanied by a legend. Otherwise, full host names are printed. Using the -a option ensures that symbolic host names are not used.
The suffix (replica root) that has been specified for replication. If -b is not specified, the delay for all suffixes is printed.
Distinguished name with which to bind to the server. This parameter is optional if the server is configured to support anonymous access. If a DN is specified in the HostSpec option, this overrides the -D option.
If specifying the default password at the command-line poses a security risk, the password can be stored in a file. The -j option specifies this file.
Specifies that repldisc should not run in interactive mode. Running in interactive mode allows you to re-enter the bindDN, password, host and port, if a bind error occurs.
The TCP port used by the instance. The default port is 389. If a port is specified in the HostSpec, this overrides the -p option.
Prints the mode of transport (SSL or CLEAR).
Specifies the number of seconds after which repldisc times out if the server connection goes down.
Password associated with the distinguished name specified by the -D option. If a password is specified in the HostSpec, this overrides the -w option.
Host specification, which takes the form [binddn:[password]@] host[:port]. The following is an example:
If you are using SSL, use -S in the server specification. In this case, HostSpec specifies the certificate name and key password, rather than the bindDN and password.
You can use the following options to specify that repldisc uses LDAPS when communicating with Directory Server. You can also use these options if you want to use certificate-based authentication. These options are valid only when LDAPS has been turned on and configured.
Default SSL port, 636.
This option has the same function as the -j option, for the key password.
Specifies the name of the certificate key used for certificate-based client authentication. For example, -K Server-Key.
Specifies the certificate name to use for certificate-based client authentication. For example, - N Server-Cert. If this option is specified, the -W option is required.
Specifies the location of the certificate database.
Specifies the password for the certificate database identified by the -P option. For example, -W serverpassword.
$ repldisc -D cn=admin,cn=Administrators,cn=config -w pwd \ -b o=rtest -s myserver:1389 Topology for suffix: o=rtest Legend: ^ : Host on row sends to host on column. v : Host on row receives from host on column. x : Host on row and host on column are in MM mode. H1 : france.example.com:1389 H2 : spain:1389 H3 : portugal:389 | H1 | H2 | H3 | ===+=============== H1 | | ^ | | ---+--------------- H2 | v | | ^ | ---+--------------- H3 | | v | | ---+---------------
Topology for suffix: o=rtest Legend: The direction of the replication is indicated with arrows. Single-master: suppliers appear on left, consumers on right (->). Multi-master : servers are shown linked by a double arrow (<->). france.example.com:1389 -> spain:1389 spain:1389 -> portugal:389
See attributes(5) for descriptions of the following attributes:
The node on which you are running the entrycmp, insync, and repldisc tools must be able to reach all the specified hosts. If these hosts are unavailable, you will encounter difficulties using these tools. Ensure that all servers are up and running before using these tools.
When you identify hosts, you must use either symbolic names or IP addresses for all hosts. The replication monitoring commands do not address resolution between symbolic names and IP addresses. Using a combination of symbolic names and IP addresses can cause problems. Moreover, on multi-homed hosts, referring to the same Directory Server instance using different names may cause unexpected results.
When SSL is enabled, the directory server on which you are running the tools must have a copy of all the certificates used by the other servers in the topology.
repldisc takes the host specification from the replication agreement, unless otherwise specified at the command line.
The replication monitoring tools rely on access to cn=config to obtain the replication status. This should be taken into account, particularly when replication is configured over SSL.