Secondary LDAP server

Gary Gatten Ggatten at
Wed Mar 9 00:16:35 CET 2011

I'm pretty sure this is discussed, examples, etc in the doc: online and in FR conf files. Sorry I don't have exact location handy, but I'm sure its there.

From: McNutt, Justin M. [mailto:McNuttJ at]
Sent: Tuesday, March 08, 2011 05:02 PM
To: freeradius-users at <freeradius-users at>
Subject: Secondary LDAP server

One of my virtual servers uses LDAP auth.  However, it isn't clear to me if modules/ldap can be configured with a secondary LDAP server, should the primary fail to respond.  The group that provides the LDAP server can't set up multiple servers behind a load balancer due to cert issues, so I'm looking for a way to add a failover LDAP server to the RADIUS configuration.

What's the easiest/best/recommended way to do something like this?  Can modules/ldap be configured this way, or should I create a modules/ldap2 (or similar) and call it somehow?

Suggestions welcome.


Justin McNutt
Network Systems Analyst - Ninja
DNPS, Mizzou Telecom
(573) 882-5183

"Do you have a concussion?"

Ping is NOT a service.  You don't need it.  Use a real test.

<font size="1">
<div style='border:none;border-bottom:double windowtext 2.25pt;padding:0in 0in 1.0pt 0in'>
"This email is intended to be reviewed by only the intended recipient
 and may contain information that is privileged and/or confidential.
 If you are not the intended recipient, you are hereby notified that
 any review, use, dissemination, disclosure or copying of this email
 and its attachments, if any, is strictly prohibited.  If you have
 received this email in error, please immediately notify the sender by
 return email and delete this email from your system."

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the Freeradius-Users mailing list