no arguing here, just clearing up things... :-) stay coolthis works as expected, though it is not that obvious that Auth-Type name refers to module name, and not just names the method... Or I might have missed that from the documentation. Anyway, "fail-over" section does not reflect this IMO. Not a note of "authenticate" sub-section at all... should it be updated?
http://wiki.freeradius.org/Fail-over
authorize {
...
redundant {
ds-02
ds-01
}
}
authenticate {
...
Auth-Type ds-01 {
ds-01
}
Auth-Type ds-02 {
ds-02
}
}
on 2/1/2007 4:04 PM Alan DeKok wrote:
Alexei Monastyrnyi wrote:But I do define it when switching from singe server to redundant group, don't I?Yes.Isn't that enough?What did my previous response say? You can argue with me, or you can try what I suggested, and verify for yourself that it works. As a hint: when the LDAP module sets Auth-Type, it sets the value to the name of the module... which in your case is "ds-01", not "LDAP". Alan DeKok. -- http://deployingradius.com - The web site of the book http://deployingradius.com/blog/ - The blog