https://issues.apache.org/bugzilla/show_bug.cgi?id=48505
Summary: Apache 2.2 not working with LDAP Fail Over Auth
Product: Apache httpd-2
Version: 2.2.13
Platform: PC
OS/Version: Linux
Status: NEW
Severity: critical
Priority: P2
Component: mod_authz_ldap
AssignedTo: [email protected]
ReportedBy: [email protected]
hi Guys
I am using apache version Apache/2.2.13 (Unix) on Fedora -11 , and using ldap
as url authentications. I setup my conf in --> /etc/httpd/conf.d/mydomain.conf
with below values
I define only here below the ldap related entries only.
LDAPTrustedMode TLS
LDAPConnectionTimeout 4
<Directory "/var/www/html/test" >
AuthName "Testing Ldap fail over"
AuthType Basic
# The LDAP server(s)
AuthLDAPURL "ldap://ldap1.mydomain.com
ldap2.mydomain.com/dc=mydomain,dc=com?uid??"
AuthBasicProvider ldap
AuthLDAPBindDN "uid=webcon,ou=WebAdmin,dc=mydomain,dc=com"
AuthLDAPBindPassword abxxyz
AuthLDAPGroupAttribute memberUid
Require ldap-group cn=WEBOU,dc=mydomain,dc=com
Order Allow,Deny
Options Indexes FollowSymLinks Multiviews
Allow from All
</Directory>
So its working when primary ldap1 server is up but for testing i down the ldap1
and then do check, so apache not forwarded the auth request to ldap2 for a long
time. it takes so many time to connect with ldap2, i think its may be 15-20
mins. I want to immediate ldap failover if primary ldap1 is down so it connects
connect to ldap2 after just some seconds. For this i can find directive
"LDAPConnectionTimeout" in docs i can try it to define 7 seconds, but still it
fails to connect with ldap2.
So please kindly give suggestions , which i need extra to make ldap fail over
effective.
Edit/Delete Message
--
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
