McNutt, Justin M. McNuttJ at
Fri Aug 24 19:24:06 CEST 2012

>From 'man unlang' I see this:

redundant-load-balance {
	ldap1     # 50%, unless ldap2 is down, then 100%
	ldap2     # 50%, unless ldap1 is down, then 100%

I clearly don't know what I'm doing when it comes to defining these "modules".  If I have just "ldap" in there, it works.  raddb/modules/ldap exists and is configured correctly.

However, when I do this in my raddb/sites-enabled/FOO:

authorize {
        redundant-load-balance {

I get the following errors from "radiusd -XC":

/etc/raddb/sites-enabled/campus-main[179]: Failed to load module "ldap1".
/etc/raddb/sites-enabled/campus-main[179]: Failed to parse "ldap1" entry.
/etc/raddb/sites-enabled/campus-main[70]: Errors parsing authorize section.

I tried copying modules/ldap to modules/ldap1, but that didn't work.  Also changed the ldap { ... } in modules/ldap1 to ldap1 { ... }.  No help there.

This must be some syntactical aliasing that I haven't set up.  What am I missing?  For now, ldap1, ldap2, and ldap3 can all be identical (for testing).  As it happens, they point to at the moment, which is itself a DNS round robin.  My plan is that if it fails on the first attempt, it should attempt at least two more times, likely hitting different real servers before actually failing.




More information about the Freeradius-Users mailing list