redundant LDAP server with free-radius

Thu Feb 1 16:33:17 CET 2007

no arguing here, just clearing up things... :-) stay cool

this works as expected, though it is not that obvious that Auth-Type 
name refers to module name, and not just names the method... Or I might 
have missed that from the documentation. Anyway, "fail-over" section 
does not reflect this IMO. Not a note of "authenticate" sub-section at 
all... should it be updated?
http://wiki.freeradius.org/Fail-over

authorize {
...
        redundant {
                ds-02
                ds-01
        }
}

authenticate {
...
        Auth-Type ds-01 {
                ds-01
        }
        Auth-Type ds-02 {
                ds-02
        }
}

on 2/1/2007 4:04 PM Alan DeKok wrote:
> Alexei Monastyrnyi wrote:
>   
>> But I do define it when switching from singe server to redundant group, don't I?
>>     
>
>   Yes.
>
>   
>> Isn't that enough?
>>     
>
>   What did my previous response say?
>
>   You can argue with me, or you can try what I suggested, and verify for
> yourself that it works.
>
>   As a hint: when the LDAP module sets Auth-Type, it sets the value to
> the name of the module... which in your case is "ds-01", not "LDAP".
>
>   Alan DeKok.
> --
>   http://deployingradius.com       - The web site of the book
>   http://deployingradius.com/blog/ - The blog
>   