Page MenuHomePhabricator
Create Task
Maniphest T120919

Add openldap/labs servers to backup
Closed, ResolvedPublic
Actions

Description

seaborgium and serpens run syncrepl replication among each other, but it would still be useful to run slapcat on the LDAP data daily and add the exported LDIF to the backups.

Details

SubjectRepoBranchLines +/-
Add a new backup set to backup openldap databases and enable on serpensoperations/puppetproduction+42 -0
openldap: add backup with ldif filesoperations/puppetproduction+23 -1
openldap/labs: make serpens/seaborgium backup hostsoperations/puppetproduction+1 -1
Customize query in gerrit

Related Objects
Search...

Event Timeline

MoritzMuehlenhoff created this task.Dec 9 2015, 8:49 AM
MoritzMuehlenhoff raised the priority of this task from to Needs Triage.
MoritzMuehlenhoff updated the task description. (Show Details)
MoritzMuehlenhoff added a project: SRE.
MoritzMuehlenhoff subscribed.
Restricted Application added subscribers: StudiesWorld, Aklapper. · View Herald TranscriptDec 9 2015, 8:49 AM
MoritzMuehlenhoff triaged this task as Medium priority.Dec 9 2015, 8:49 AM
MoritzMuehlenhoff set Security to None.
gerritbot subscribed.Dec 14 2015, 10:08 PM

Change 259155 had a related patch set uploaded (by Dzahn):
openldap/labs: make serpens/seaborgium backup hosts

https://gerrit.wikimedia.org/r/259155

gerritbot added a project: Patch-For-Review.Dec 14 2015, 10:08 PM
gerritbot added a comment.Dec 14 2015, 10:54 PM

Change 259155 merged by Dzahn:
openldap/labs: make serpens/seaborgium backup hosts

https://gerrit.wikimedia.org/r/259155

gerritbot added a comment.Dec 14 2015, 10:56 PM

Change 259174 had a related patch set uploaded (by Dzahn):
openldap: add backup with ldif files

https://gerrit.wikimedia.org/r/259174

Dzahn subscribed.Dec 14 2015, 11:11 PM

I added backup::host to these nodes as a requirement. That installed bacula client etc already.

Now pending the second patch i uploaded which adds a cron to run slapcat, a directory to write the backup to and a fileset and backup job in Bacula to backup that.

It would simply be writing one file per day and keep overwriting the same file, no different versions fo sar.

Dzahn claimed this task.Dec 14 2015, 11:11 PM
gerritbot added a comment.Dec 15 2015, 8:17 PM

Change 259174 abandoned by Dzahn:
openldap: add backup with ldif files

https://gerrit.wikimedia.org/r/259174

Dzahn removed Dzahn as the assignee of this task.Dec 16 2015, 12:56 AM

per the comments on that gerrit link above, Alex said " I 'll try and create a bpipe approach in labs as a first step."

Dzahn removed a project: Patch-For-Review.Dec 16 2015, 12:57 AM
Dzahn added a subscriber: akosiaris.
gerritbot added a comment.May 20 2016, 8:07 AM

Change 289824 had a related patch set uploaded (by Muehlenhoff):
Add a new backup set to backup openldap databases

https://gerrit.wikimedia.org/r/289824

gerritbot added a project: Patch-For-Review.May 20 2016, 8:07 AM
MoritzMuehlenhoff added a parent task: T130593: investigate slapd memory leak.May 20 2016, 8:10 AM
gerritbot added a comment.May 31 2016, 12:10 PM

Change 289824 merged by Muehlenhoff:
Add a new backup set to backup openldap databases and enable on serpens

https://gerrit.wikimedia.org/r/289824

Muehlenhoff mentioned this in rOPUP107f0e66bb11: Add a new backup set to backup openldap databases and enable on serpens.May 31 2016, 12:13 PM
Muehlenhoff mentioned this in rOPUPf0aa36038c2e: Add a new backup set to backup openldap databases and enable on serpens.Jun 17 2016, 6:08 PM
Muehlenhoff mentioned this in rOPUP823a9f8beea0: Add a new backup set to backup openldap databases and enable on serpens.
Muehlenhoff mentioned this in rOPUPf4b8f2b42dd1: Add a new backup set to backup openldap databases and enable on serpens.
Muehlenhoff mentioned this in rOPUP123399c40d87: Add a new backup set to backup openldap databases.
Muehlenhoff mentioned this in rOPUP71b6efc28664: Add a new backup set to backup openldap databases.
fgiunchedi removed a project: Patch-For-Review.Jul 11 2016, 2:23 PM
fgiunchedi subscribed.

ldap backups are now enabled only on serpens, shall we enable it on all machines in codfw and eqiad too?

MoritzMuehlenhoff added a comment.Jul 11 2016, 2:32 PM

I think that makes sense. For the OIT mirrors we also ended up having a backup for both syncrepl endpoints since the slapd data is so tiny. I'll make a patch.

MoritzMuehlenhoff closed this task as Resolved.Jul 11 2016, 2:41 PM
MoritzMuehlenhoff claimed this task.

The LDAP servers for OIT and labs are part of the backup for a while now, closing.

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL