Grouper Users - Open Discussion List

[caleb racey <>]

If it’s the same as the ldap connector in shib (I think it is) then I think you can pass in multiple  urls in the config and it tries  them in turn e.g. for login binding we have

 

 

edu.vt.middleware.ldap.jaas.LdapLoginModule required

      host="ldap:/one.ncl.ac.uk:3268 ldap://two.ncl.ac.uk:3268 ldap://three.ncl.ac.uk:3268"

 

 

hope this helps

 

Cal

 

 

 

From: [mailto:] On Behalf Of Gagné Sébastien
Sent: 07 December 2012 15:43
To:
Subject: [grouper-users] vt-ldap with multiple domain controllers

 

Hi,

We are using Grouper avec an Active Directory subject source. In production we have 5 controllers being returned in a DNS round-robin.

 

How does vt-ldap handles that ? Is there any configuration to handle one controller’s failure ? I didn’t find any.

 

I used the DNS round-robin URL (e.g. domain.umontreal.ca) in the configurations and it’s working fine, but what if the controllers fails ? Will it always retry on the same controller’s IP/URL (e.g. ad1.domain.umontreal.ca) or will it get a new one from the configuration ? I’ve configured retries in grouper (edu.vt.middleware.ldap.operationRetry = 5) is this enough to guarantee high availability or will all 5 retries fail on the same controller ?

 

Thanks

 

 

Sébastien Gagné,     | Analyste en informatique

514-343-6111 x33844  | Université de Montréal,

                     | Pavillon Roger-Gaudry, local X-100-11