Dustin Doris <[EMAIL PROTECTED]> wrote:
> However, when I am using redundant, I cannot have this redundancy for
> Ldap-Group lookups.
Yes. That's an issue.
We should really have inter-section references in the config files,
and fail-over for things like attributes & groups.
e.g.
instantiate {
redundant myldap {
ldap1
ldap2
}
}
authorize {
myldap
}
and you should be able to refer to "myldap-group".
Implementing it may be hard, though. It's easy to do for module
references, and more difficult for things like LDAP-Group.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
