Failover with Active Directory
Robert Miller
miller.robertw at outlook.com
Mon Aug 17 13:57:25 CEST 2020
> From mods-available/ldap:
>
> # Seconds to wait for response of the server. (network
> # failures) default: 10
> #
> # LDAP_OPT_NETWORK_TIMEOUT is set to this value.
> net_timeout = 1
>
> This also works for connections.
This was set to net_timeout = 1
> But to be realistic, that timeout might not work on older versions of libldap
> before 2.4. And there's very little that we can do to fix it. FreeRADIUS
> doesn't implement the LDAP protocol. Instead it relies on the OpenLDAP
> libldap libraries. And if those libraries don't time out quickly enough, we can't
> do much about it.
What version of libldap does freeradius 3.0.17 contain? If prior to 2.4, will upgrading to 3.0.22 fix that?
> The short answer is that if RADIUS is critical for network access, you MUST
> ensure that RADIUS and all of things it needs are up and running.
I understand and thank you for your time.
Rob
More information about the Freeradius-Users
mailing list