HP-UX Directory Server 8.1 administrator guide
Enable replication logging for more detailed information on synchronization to be recorded in
the errors log. Replication log levels produces more verbose logs from the sync code that can
help in diagnosing problems.
1. In the Console, click the Configuration tab, select Logs from the navigation menu on the
right, and open the errors log.
2. Scroll down to errors log level, and select Replication from the menu. Click save.
For complete information on errors log levels, refer to HP-UX Directory Server configuration,
command, and file reference.
Error #1: The message box when creating the sync agreement indicates that it cannot connect to
Active Directory. Make sure that the directory suffixes, Windows domain and domain host,
and the administrator DN and password are correct. Also verify that the port numbers used for
LDAPS is correct. If all of them is correct, make sure that Active Directory or the Windows
machine is running.
Error #2: After synchronization, the status returns error 81. One of the sync peer servers has
not been properly configured for SSL communication. Examine the Directory Server access log
file to see if the connection attempt was received by the Directory Server. There are also helpful
messages in the Directory Server's errors log file.
To narrow down the source of the misconfiguration, try to establish an LDAPS connection to the
Directory Server. If this connection attempt fails, check all values (port number, host name, search
base, and so forth) to see if any of these are the problem. If all else fails, reconfigure the Directory
Server with a new certificate.
If the LDAPS connection is successful, it is likely that the misconfiguration is on Active Directory.
Examine the Windows event log file for error messages.
NOTE:
A common problem is that the certificate authority was not configured as trusted when the
Windows Sync services certificate database was configured.
9.10 Troubleshooting synchronization problems 429