ldap module for user and mac authentication
Michael Ströder
michael at stroeder.com
Thu Aug 9 14:40:04 CEST 2018
On 8/9/18 2:23 PM, Dave Macias wrote:
> So what did i learn?
> you dont need to use the SRV record for failover, as long as you have all
> the ldap servers in your ldap module.
Yes!
In theory the advantage of SRV RRs are that you can theoretically change
what's in your pool of LDAP servers and adjust priorities based on
locations.
Besides that I don't believe anybody fully implemented that I'm not a
fan of SRV RRs anyway because the TLS hostname check is not even defined
for that.
Ciao, Michael.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3829 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20180809/a8fa42d1/attachment.bin>
More information about the Freeradius-Users
mailing list