FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > CentOS > CentOS

 
 
LinkBack Thread Tools
 
Old 12-14-2010, 01:19 AM
"Nicolas Ross"
 
Default Specifying 2 LDAP Server for auth

> It works, but the Red Hat tools don't create the optimal configuration
> files. The following works in our environment (two LDAP servers, TLS
> required). I set the various timelimit values low to facilitate a
> fairly robust failover:
>
> # /etc/ldap.conf
> #
> # failover doesn't seem to work work using the newer, and
> # recommended, 'uri' directive.
> host ldap1.you.com ldap2.you.com
> port 389
> base dc=you,dc=com
> # encrypt queries over the wire; our servers require it
> ssl start_tls
> tls_checkpeer yes
> tls_cacertdir /etc/openldap/cacerts
> # set time limits fairly low to get benefit of failover
> bind_timelimit 30
> idle_timelimit 120
> timelimit 30
> # eof

It was a routing problem. I was indeed able to add a second ldap server
(off-site), and it worked.

Regardsm

_______________________________________________
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
 

Thread Tools




All times are GMT. The time now is 04:35 PM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org