LDAP redundancy at Freeradius 3.0.8
Michael Ströder
michael at stroeder.com
Wed Jul 8 09:46:09 CEST 2015
Alan DeKok wrote:
> On Jul 7, 2015, at 5:50 PM, Ing. Martin Samek <samekma1 at fel.cvut.cz> wrote:
>> I'm trying find out how to correctly configure LDAP server redundacy in Freeradius 3.0.8. I dig trough mailing list archive, found some configuration snippets, but configuration doesn't work for me.
>
> The first question is: what kind of redundancy do you want?
>
> Do you want to use the LDAP servers as databases, and let FreeRADIUS do the authentication? Or do you want to pass the name/password to LDAP, and have the LDAP servers do the authentication?
>
> The answer for "how to correctly configure LDAP server redundancy" depends on the answer to those questions.
Frankly I don't understand.
Could you please elaborate on why that makes a difference?
Is it because sending bind requests to the LDAP server is a new separate
connection?
Ciao, Michael.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4272 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20150708/befddd22/attachment-0001.bin>
More information about the Freeradius-Users
mailing list