Failure to reconnect to ldaps server after idle_timeout

Arran Cudbard-Bell a.cudbardb at freeradius.org
Tue Mar 10 21:38:23 CET 2015


> On 10 Mar 2015, at 16:25, A.L.M.Buxey at lboro.ac.uk wrote:
> 
> Hi,
> 
>> I have a freeradius v3.0.7 server running in a test setup that uses the rlm_ldap module to verify users and groups against an LDAPS server (ie LDAP with SSL enabled).
> 
> seen this in 3.0.x (before 3.0.7) where the LDAP timers are set to aggressively. dont expire
> the connections and have lifetime = 0 - then the sockets are nicely kept open and will be reconnected
> if theres connectivity issue

Given the root cause I would expect this to break if ldap_unbind was called on any LDAP handle.

Arran Cudbard-Bell <a.cudbardb at freeradius.org>
FreeRADIUS development team

FD31 3077 42EC 7FCD 32FE 5EE2 56CF 27F9 30A8 CAA2

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 872 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20150310/85782de0/attachment-0001.sig>


More information about the Freeradius-Users mailing list