> For large multi-site organisations, is there any norm as to
> how many
> LDAP servers (Masters + Slave) should be on the network,
> primary
> application being network authentication and authorisation.
> Point in
> perspective being, is it a good practice that every
> physical and
> geographically disparate site be equipped with a slave LDAP
> server?
Lets firs take up Master servers. 1+1 master setup would suffice most of the
requirements. Do not use masters for lookups, instead use them only for
addition, modification and replication purposes. To have resiliency, one may
decide to put these masters in seperate geographical locations.
If network latency is large between different sites, it makes more sense to
have a dedicated slave server for each site. Also, it depends on the client
application whether it can query a secondary server in case primary is not
responding. If client application cannot fail over to secondary, you will be
required to modify each client manually whenever primary goes down, or simply
DNAT the requests coming to primary slave to secondary slave (could be put on
different site).
regards,
Nishant
Connect with friends all over the world. Get Yahoo! India Messenger at
http://in.messenger.yahoo.com/?wm=n/
_______________________________________________
ilugd mailinglist -- [email protected]
http://frodo.hserus.net/mailman/listinfo/ilugd
Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi
http://www.mail-archive.com/[email protected]/
