| HPE Storage Users Group https://www.3parug.com/ |
|
| LDAP (AD) high availability with 3par's authentication https://www.3parug.com/viewtopic.php?f=18&t=634 |
Page 1 of 1 |
| Author: | nsnidanko [ Tue Mar 11, 2014 11:01 am ] |
| Post subject: | LDAP (AD) high availability with 3par's authentication |
Hi All, How does everyone provide HA (high availability) for 3par's LDAP authentication? You can enter only one LDAP server. What happens when authentication server is not available? Thanks |
|
| Author: | Cleanur [ Tue Mar 11, 2014 1:03 pm ] |
| Post subject: | Re: LDAP (AD) high availability with 3par's authentication |
Not an expert on ldap Integration, but couldn't you use multiple DNS entries ? |
|
| Author: | nsnidanko [ Tue Mar 11, 2014 3:34 pm ] |
| Post subject: | Re: LDAP (AD) high availability with 3par's authentication |
Not sure what do you refer as multiple DNS entries, but my dilemma is that ldap-server only takes single server. |
|
| Author: | phoglind [ Thu Jun 12, 2014 3:10 pm ] |
| Post subject: | Re: LDAP (AD) high availability with 3par's authentication |
Hi, Have you tried to just add the active directory/ldap realm instead of an host? Instead of host.yourdomain.com you just ad the realm yourdomain.com I've just add my LDAP authorization for two 7400 systems resently upgradet to 3.1.3. And it works OK, but we face some issues when using ldap accounts to configure and managing parts of the system from both IMC and CLI K.R. Peter |
|
| Author: | afidel [ Thu Jun 12, 2014 3:36 pm ] |
| Post subject: | Re: LDAP (AD) high availability with 3par's authentication |
phoglind wrote: Hi, Have you tried to just add the active directory/ldap realm instead of an host? Instead of host.yourdomain.com you just ad the realm yourdomain.com I've just add my LDAP authorization for two 7400 systems resently upgradet to 3.1.3. And it works OK, but we face some issues when using ldap accounts to configure and managing parts of the system from both IMC and CLI K.R. Peter The one problem with using realm is that at least with AD integrated DNS you'll get back a list of ALL domain controllers, not just those in the current site so your appliance may connect to a DC in a far off site which can lead to problems. |
|
| Page 1 of 1 | All times are UTC - 5 hours |
| Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group http://www.phpbb.com/ |
|