jankowa/replication statement Secret

## replication statement
# Adding Changelog on ldmaster0
/usr/lib/mozldap/ldapmodify -h ldmaster0 -p 389 -D "cn=directory manager" -w SECRETBINDPW << EOF
dn: cn=changelog5,cn=config
changetype: add
objectclass: top
objectclass: extensibleObject
cn: changelog5
nsslapd-changelogdir: /var/lib/dirsrv/slapd-ldmaster0/changelogdb
nsslapd-changelogmaxage: 10d
EOF


# Adding Replication on ldmaster0
/usr/lib/mozldap/ldapmodify -h ldmaster0 -p 389 -D "cn=directory manager" -w SECRETBINDPW << EOF
dn: cn=replica,cn=dc\=datenkollektiv\,dc\=net,cn=mapping tree,cn=config
changetype: add
objectclass: top
objectclass: nsds5replica
objectclass: extensibleObject
cn: replica
nsds5replicaroot: dc=test,dc=net
nsds5replicaid: 7
nsds5replicatype: 3
nsds5flags: 1
nsds5ReplicaPurgeDelay: 604800
nsds5ReplicaBindDN: cn=replication manager,cn=config
EOF


# Adding cn Replication Manager on ldslave0
/usr/lib/mozldap/ldapmodify -h ldslave0 -p 389 -D "cn=directory manager" -w SECRETBINDPW << EOF
dn: cn=replication manager,cn=config
changetype: add
objectClass: inetorgperson
objectClass: person
objectClass: top
cn: replication manager
sn: RM
userPassword: secret
passwordExpirationTime: 20380119031407Z
nsIdleTimeout: 0
EOF


# Adding Replication on ldslave0
/usr/lib/mozldap/ldapmodify -h ldslave0 -p 389 -D "cn=directory manager" -w SECRETBINDPW << EOF
dn: cn=replica,cn=dc\=datenkollektiv\,dc\=net,cn=mapping tree,cn=config
changetype: add
objectclass: top
objectclass: nsds5replica
objectclass: extensibleObject
cn: replica
nsds5replicaroot: dc=test,dc=net
nsds5replicaid: 65535
nsds5replicatype: 2
nsds5flags: 0
nsds5ReplicaPurgeDelay: 604800
nsds5ReplicaBindDN: cn=replication manager,cn=config
EOF


# Adding Replication Agreement on ldmaster0
/usr/lib/mozldap/ldapmodify -h ldmaster0 -p 389 -D "cn=directory manager" -w SECRETBINDPW << EOF
dn: cn=testreplica,cn=replica,cn=dc\=datenkollektiv\,dc\=net,cn=mapping tree,cn=config
changetype: add
objectclass: top
objectclass: nsds5ReplicationAgreement
cn: testreplica
nsds5replicahost: ldslave0
nsds5replicaport: 389
nsds5ReplicaBindDN: cn=replication manager,cn=config
nsds5replicabindmethod: SIMPLE
nsds5replicaroot: dc=test,dc=net
description: agreement between ldmaster0 and ldslave0 for dc=test,dc=net
nsds5replicaupdateschedule: 0001-2359 0123456
nsds5replicatedattributelist: (objectclass=*) $ EXCLUDE authorityRevocationList accountUnlockTime memberof
nsDS5ReplicatedAttributeListTotal: (objectclass=*) $ EXCLUDE accountUnlockTime
nsds5replicacredentials: secret
EOF


	# Search for Replication Agreement
/usr/lib/mozldap/ldapsearch -x -h ldmaster0 -p 389 -D "cn=directory manager"  -w SECRETBINDPW -s sub -b cn=config "(objectclass=nsds5ReplicationAgreement)"


# Start Replication on ldmaster0
/usr/lib/mozldap/ldapmodify -h ldmaster0 -p 389 -D "cn=directory manager" -w SECRETBINDPW << EOF
dn: cn=testreplica,cn=replica,cn=dc\=datenkollektiv\,dc\=net,cn=mapping tree,cn=config
changetype: modify
replace: nsds5BeginReplicaRefresh
nsds5BeginReplicaRefresh: start
EOF
	# Adding Changelog on ldmaster0
	/usr/lib/mozldap/ldapmodify -h ldmaster0 -p 389 -D "cn=directory manager" -w SECRETBINDPW << EOF
	dn: cn=changelog5,cn=config
	changetype: add
	objectclass: top
	objectclass: extensibleObject
	cn: changelog5
	nsslapd-changelogdir: /var/lib/dirsrv/slapd-ldmaster0/changelogdb
	nsslapd-changelogmaxage: 10d
	EOF


	# Adding Replication on ldmaster0
	/usr/lib/mozldap/ldapmodify -h ldmaster0 -p 389 -D "cn=directory manager" -w SECRETBINDPW << EOF
	dn: cn=replica,cn=dc\=datenkollektiv\,dc\=net,cn=mapping tree,cn=config
	changetype: add
	objectclass: top
	objectclass: nsds5replica
	objectclass: extensibleObject
	cn: replica
	nsds5replicaroot: dc=test,dc=net
	nsds5replicaid: 7
	nsds5replicatype: 3
	nsds5flags: 1
	nsds5ReplicaPurgeDelay: 604800
	nsds5ReplicaBindDN: cn=replication manager,cn=config
	EOF


	# Adding cn Replication Manager on ldslave0
	/usr/lib/mozldap/ldapmodify -h ldslave0 -p 389 -D "cn=directory manager" -w SECRETBINDPW << EOF
	dn: cn=replication manager,cn=config
	changetype: add
	objectClass: inetorgperson
	objectClass: person
	objectClass: top
	cn: replication manager
	sn: RM
	userPassword: secret
	passwordExpirationTime: 20380119031407Z
	nsIdleTimeout: 0
	EOF


	# Adding Replication on ldslave0
	/usr/lib/mozldap/ldapmodify -h ldslave0 -p 389 -D "cn=directory manager" -w SECRETBINDPW << EOF
	dn: cn=replica,cn=dc\=datenkollektiv\,dc\=net,cn=mapping tree,cn=config
	changetype: add
	objectclass: top
	objectclass: nsds5replica
	objectclass: extensibleObject
	cn: replica
	nsds5replicaroot: dc=test,dc=net
	nsds5replicaid: 65535
	nsds5replicatype: 2
	nsds5flags: 0
	nsds5ReplicaPurgeDelay: 604800
	nsds5ReplicaBindDN: cn=replication manager,cn=config
	EOF


	# Adding Replication Agreement on ldmaster0
	/usr/lib/mozldap/ldapmodify -h ldmaster0 -p 389 -D "cn=directory manager" -w SECRETBINDPW << EOF
	dn: cn=testreplica,cn=replica,cn=dc\=datenkollektiv\,dc\=net,cn=mapping tree,cn=config
	changetype: add
	objectclass: top
	objectclass: nsds5ReplicationAgreement
	cn: testreplica
	nsds5replicahost: ldslave0
	nsds5replicaport: 389
	nsds5ReplicaBindDN: cn=replication manager,cn=config
	nsds5replicabindmethod: SIMPLE
	nsds5replicaroot: dc=test,dc=net
	description: agreement between ldmaster0 and ldslave0 for dc=test,dc=net
	nsds5replicaupdateschedule: 0001-2359 0123456
	nsds5replicatedattributelist: (objectclass=*) $ EXCLUDE authorityRevocationList accountUnlockTime memberof
	nsDS5ReplicatedAttributeListTotal: (objectclass=*) $ EXCLUDE accountUnlockTime
	nsds5replicacredentials: secret
	EOF


	# Search for Replication Agreement
	/usr/lib/mozldap/ldapsearch -x -h ldmaster0 -p 389 -D "cn=directory manager" -w SECRETBINDPW -s sub -b cn=config "(objectclass=nsds5ReplicationAgreement)"


	# Start Replication on ldmaster0
	/usr/lib/mozldap/ldapmodify -h ldmaster0 -p 389 -D "cn=directory manager" -w SECRETBINDPW << EOF
	dn: cn=testreplica,cn=replica,cn=dc\=datenkollektiv\,dc\=net,cn=mapping tree,cn=config
	changetype: modify
	replace: nsds5BeginReplicaRefresh
	nsds5BeginReplicaRefresh: start
	EOF