Radius and LDAP

Alan DeKok aland at deployingradius.com
Wed Jan 13 09:37:22 CET 2010


Jason Frisvold wrote:
> 	I have a quick LDAP question.  I'm running freeradius 1.1.3, the latest
> version available for RHEL 5.4.

  See the Wiki.  There are updated RPMs available.

> 	So, on to the question.  If the LDAP server goes away, it looks like
> radius returns an access-reject.  We have, however, redundant ldap and
> radius servers.  Is it possible to have radius stop responding if the
> local ldap server stops responding rather than having it return a
> reject?  The idea here it so have the access device fail over to the
> other radius server in the event of a failure instead of rejecting all
> access requests in case of a single failure.

  2.1.8 has a "do not respond" policy that can be used to avoid
responding when the LDAP server is down.

  Alan DeKok.



More information about the Freeradius-Users mailing list