pam-ldapd and multiples uri

[ROGERIO DE CARVALHO BASTOS <rogeriobastos [at] dcc.ufba.br>]

Hi,

I have two LDAP servers (OpenLDAP 2.4.11 in Debian Lenny) called ldap  
and ldap2. So I configure two uri in nslcd.conf, but when the first  
server (ldap) is down I don't make login through the second server  
(ldap2). I don't have this problem with libnss-ldapd and if I  
configure only one server (ldap or ldap2) I make login normally.

This's my nslcd.conf:

uid nslcd
gid nslcd
uri ldaps://ldap.domain
uri ldaps://ldap2.domain
base dc=my,dc=domain
ldap_version 3
ssl on
tls_reqcert hard
tls_cacertfile /etc/cert.pem
scope sub
bind_timelimit 3


This's the log:

nslcd[9351]: version 0.7.1 starting
nslcd[9351]: accepting connections
nslcd[9351]: [8b4567] failed to bind to LDAP server  
ldaps://ldap.xxx.yyy: Can't contact LDAP server: Connection timed out
nslcd[9351]: [8b4567] connected to LDAP server ldaps://ldap2.xxx.yyy
nslcd[9351]: [8b4567] failed to bind to LDAP server  
ldaps://ldap.xxx.yyy: Can't contact LDAP server: Connection timed out
nslcd[9351]: [7b23c6] failed to bind to LDAP server  
ldaps://ldap.xxx.yyy: Can't contact LDAP server: Connection timed out
nslcd[9351]: [7b23c6] connected to LDAP server ldaps://ldap2.xxx.yyy
nslcd[9351]: [3c9869] failed to bind to LDAP server  
ldaps://ldap.xxx.yyy: Can't contact LDAP server: Connection timed out
nslcd[9351]: [334873] failed to bind to LDAP server  
ldaps://ldap.xxx.yyy: Can't contact LDAP server: Connection timed out
nslcd[9351]: [334873] connected to LDAP server ldaps://ldap2.xxx.yyy

--

Rogerio de Carvalho Bastos

http://wiki.dcc.ufba.br/Main/RogerioBastos

--
To unsubscribe send an email to
nss-pam-ldapd-users-unsubscribe@lists.arthurdejong.org or see
http://lists.arthurdejong.org/nss-pam-ldapd-users