[Date Prev][Date Next] [Chronological] [Thread] [Top]

(ITS#7836) Incorrect behavior with problematic LDAP server

To: openldap-its@OpenLDAP.org
Subject: (ITS#7836) Incorrect behavior with problematic LDAP server
From: tarkhil@over.ru
Date: Mon, 14 Apr 2014 06:50:50 GMT
Auto-submitted: auto-generated (OpenLDAP-ITS)

Full_Name: Alex Povolotsky
Version: 2.4.36
OS: FreeBSD 9.2
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (89.178.228.111)


Hello

I'm using failover setup for my LDAP authentication

=== ldap.conf ===
BASE dc=org,dc=ru
URI ldap://serv1 ldap://serv2
TIMEOUT 3
NETWORK_TIMEOUT 3
TIMELIMIT 3

SUDOERS_BASE ou=sudoers,dc=
nss_base_passwd o=infotel,dc=

pam_filter objectClass=posixAccount
===

Today, serv1 failed, become unaccessible but not down. I can connect to LDAP
port, but server closes the connection immediately.

In this case, second URI does not work. Any ldap tool fails ("Cannot connect to
server"). Shutting down interface helped, but I suppose that there must be an
option to try second URI on such an error.

Prev by Date: (ITS#7835) slapadd should ignore comment lines in LDIF input
Next by Date: (ITS#7837) slapd seg faults in slapo-rwm
Index(es):
- Chronological
- Thread