Hi,
I have a few quick questions and will follow with the interesting context.
What is the correct or recommended way to set up, and recommended settings, for Courier IMAP/POP authentication to redundant LDAP servers?
It seems that the Authorization Daemons for Courier have persistent connections to the LDAP server - under what conditions are these persistent connections torn down? Are there settings to ensure they get torn down on a relatively regular basis?
How can Courier make use of redundant LDAP servers? Will it fail over to the next server? Given the persistent connections, does it make the most sense to rotate the order of the LDAP servers in the multiple IMAP/POP machines for load balancing?
Is it possible to compile the IMAP/POP servers so that they use the native LDAP authentication (i.e. Open LDAP)?
Now for the context:
We have redundant LDAP servers (iPlanet LDAP servers with master/master configuration)
+ Two LDAP servers are accessed via a load balancer
+ Relatively recent instances of the Courier IMAP/POP servers (3.0.2)
+ Authentication for our IMAP/POP servers is run through the custom (i.e. PAM) modules which in turn authenticates via LDAP
+ Multiple IMAP (4)/ POP (2) machines
This resulted in a mess when one of the LDAP servers went down. The symptom was IMAP/POP would have intermittent authentication problems even after both servers were up and running. We were able to eventually track it down to persistent Authdaemon connections that were pointed (via PAM & load balancer) to ports that no longer existed.
This does not seem to be an optimal configuration. My only defense is that it is not mine.
We are looking for redundancy/automatic fail over and I am interested in hearing from others who have met these goals with their setups.
Many thanks in advance!
---Jack
______ Jack Stewart UCO Staff, ITS, California Institute of Technology [EMAIL PROTECTED] 626/395-4690
------------------------------------------------------- This SF.Net email is sponsored by: IntelliVIEW -- Interactive Reporting Tool for open source databases. Create drag-&-drop reports. Save time by over 75%! Publish reports on the web. Export to DOC, XLS, RTF, etc. Download a FREE copy at http://www.intelliview.com/go/osdn_nl _______________________________________________ courier-users mailing list [email protected] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
