Using a dsreplication status command such as the following returns partial or no information:
$ ./dsreplication status --hostname localhost.localdomain --port 4444 --adminUID admin --adminPassword password --trustAll --no-prompt
- An error similar to the following is shown when you run dsreplication status non-interactively:
The displayed information might not be complete because the following errors were encountered reading the configuration of the existing servers: Error on ds1.example.com: An error occurred connecting to the server. Details: Insufficient Access Rights: You do not have sufficient privileges to read directory server monitoring information
- The following output is shown when you run the command interactively:
No replication information found.
Upgraded to DS 6.x.
The required permissions for monitoring dsreplication have changed in DS 6 and need to be updated manually as noted in the Installation Guide › To Upgrade Replicated Servers.
This issue can be resolved by adding the following required permissions:
The following example grants the privileges to the default global administrator account, which has DN cn=admin,cn=Administrators,cn=admin data:
$ ./ldapmodify --port 1389 --hostname ds1.example.com --bindDN "cn=admin,cn=Administrators,cn=admin data" --bindPassword password dn: cn=admin,cn=Administrators,cn=admin data changetype: modify add: ds-privilege-name ds-privilege-name: bypass-lockdown ds-privilege-name: monitor-read ds-privilege-name: server-lockdown -
Related Issue Tracker IDs