RE: [otrs] LDAP Authentication Failover

According to the Perl LDAP documentation, Net::LDAP supports specifying multiple hosts for a simple failover method upon connect. I haven tried it myself, but I would think that one could specify multiple hosts separated by a comma on the $Self->{'AuthModule::LDAP::Host'} setting. The NetLDAP FAQ also suggests a way of doing this by using the example code below: unless ( $ldaps = Net::LDAPS->new($ldapserverone, port=>636,timeout=>5) ) { $ldaps = Net::LDAPS->new($ldapservertwo, port=>636,timeout=>20) || return "Can't connect to $ldapserverone or $ldapservertwo via LDAPS: $@"; } The problem would be if OTRS keeps the LDAP connection, in that case one would probably have to stop apache/otrs and restart it.. Thomas

-----Original Message----- From: Robert Kehl [mailto:robert.kehl@otrs.de] Sent: Monday, May 10, 2004 10:08 PM To: User questions and discussions about OTRS. Subject: Re: [otrs] LDAP Authentication Failover

On Monday, May 10, 2004 8:19 PM Tyler Hepworth wrote:

...

I do my agent and customer authentication off of Active Directory via LDAP. Occassionally, the DC that I am pointing at will be offline. When that happens, the entire OTRS program is unusable. To get back online, I have to edit the Config.pm file and point it at a different DC that is working. Is there a way to pass multiple DC arguments to the Auth modules so that if one is not available it will try the next?

We already track a request for a more readable error output.

At current, having multiple LDAP servers might be desirable, but not solvable from within OTRS.

Workarounds:

a) Point OTRS to your Global Catalog Server (formerly known as PDC, formerly known as Prince), which shouldn't go away anytime.

b) Set up a never-dying (aka localhost) LDAP server replicating the wanted data at regularly intervals from your AD. Additionally, write a tutorial about the replication from AD. :)

Regards,

Robert Kehl

-- ((otrs.de)) :: OTRS GmbH :: Norsk-Data-Str. 1 :: 61352 Bad Homburg http://www.otrs.de/ :: Tel. +49 (0)6172 4832388

_______________________________________________ OTRS mailing list: otrs - Webpage: http://otrs.org/ Archive: http://lists.otrs.org/pipermail/otrs To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs Support oder Consulting für Ihr OTRS System? => http://www.otrs.de/

DISCLAIMER: This message contains information that may be privileged or confidential and is the property of the Roxar Group. It is intended only for the person to whom it is addressed. If you are not the intended recipient, you are not authorised to read, print, retain, copy, disseminate, distribute, or use this message or any part thereof. If you receive this message in error, please notify the sender immediately and delete all copies of this message.