Comment 1 Philipp Hahn 2013-05-03 16:48:11 CEST

Also need to check, if
 /etc/ldap-backup.secret
 /etc/backup-join.secret
 /etc/slave-join.secret
are still required...

Comment 2 Arvid Requate 2014-02-19 17:22:23 CET

/etc/ldap-backup.secret contains the password for cn=backup,$ldap_base which is created locally on each UCS DC as part of base.ldif. Usually he secret is different on each UCS DC. The BindDN has been used for LDAP access by Samba3 BDCs. The initial commit seems to date back to SVN times. By default this has been replaced by the UCR variable samba/user (cn=admin or ldap/hostdn). Thus I guess cn=backup may be removed safely (in univention-samba and univention-ldap).

Comment 3 Philipp Hahn 2014-03-04 14:17:18 CET

(In reply to Arvid Requate from comment #2)
> /etc/ldap-backup.secret ... is created locally on each UCS DC as part of base.ldif.

My DC Slave and DC Master have the same file content in /etc/ldap-backup.secret.

It seems to be created by base/univention-server/debian/univention-server-master.preinst or base/univention-system-setup/usr/lib/univention-system-setup/scripts/setup-join.sh and is copied by management/univention-join/univention-join for Backup and Slave DCs.

Comment 4 Stefan Gohmann 2019-01-03 07:18:08 CET

This issue has been filled against UCS 4.0. The maintenance with bug and security fixes for UCS 4.0 has ended on 31st of May 2016.

Customers still on UCS 4.0 are encouraged to update to UCS 4.3. Please contact
your partner or Univention for any questions.

If this issue still occurs in newer UCS versions, please use "Clone this bug" or simply reopen the issue. In this case please provide detailed information on how this issue is affecting you.

Comment 5 Philipp Hahn 2020-04-15 10:32:48 CEST

Still confuses people with UCS-4 and should be finally removed with UCS-5?