John <[EMAIL PROTECTED]> wrote:
> Is there an option to have radius appear unavailable if the ldap
> server is unavailable?
Not really.
> In our ldap is unavailable, the radius server will no longer be able
> to successfuly process authentication requests, and we'd like the
> NAS to believe radius is down and move on to the next one.
That sounds reasonable to me.
The problem is that you'd like the server to stop listening to new
requests, when your ldap server is down.
Hmm... it *could* be possible now. Configure the 'ldap' module to
fail-over to an instance of the 'always' module, which is configured
to be:
always handled {
rcode = handled
}
So if the LDAP module fails, the 'always' module will say "No
problem I've handled the request", and the server won't respond. From
the point of view of the NAS, it will look like the server is down.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
