Rauno Tuul
2003-Oct-07 09:05 UTC
[Samba] samba-3 PDC & BDC fail-over with 2 LDAP servers fails
Hi, In samba help: samba-bdc.html there is a section available configs: Possible PDC/BDC plus LDAP configurations include: PDC -> LDAP master, with secondary slave LDAP server. BDC -> LDAP slave server, with secondary master LDAP server. So I configured it so and tested samba's ability to switch over to backup LDAP backend. If both LDAP servers are up, everything is just fine. But when 1 LDAP goes down, samba should understand it and work with another LDAP. Well, I doesn't work for me... PDC (also master-ldap) smb.conf passdb backend = ldapsam:ldaps://master-ldap.lan ldapsam:ldaps://slave-ldap.lan BDC (also slave-ldap) smb.conf passdb backend = ldapsam:ldaps://slave-ldap.lan ldapsam:ldaps://master-ldap.lan case 1) I shut master LDAP down on PDC master-ldap# smbclient -U username -L (it takes about 15 sec to prompt the pwd) Password: session setup failed: Call timed out: server did not respond after 20000 milliseconds on BDC slave-ldap# smbclient -U username -L (it takes about 15 sec to prompt the pwd) Password: tree connect failed: Call timed out: server did not respond after 20000 milliseconds case 2) I shut slave LDAP down on PDC master-ldap# smbclient -U username -L (it takes about 15 sec to prompt the pwd) Password: tree connect failed: Call timed out: server did not respond after 20000 milliseconds on BDC slave-ldap# smbclient -U username -L (it takes about 15 sec to prompt the pwd) Password: session setup failed: Call timed out: server did not respond after 20000 milliseconds In logs of both servers: smbldap_search: LDAP server is down! smbldap_search_suffix: Problem during the LDAP search: (unknown) (Can't contact LDAP server) Basically if 1 LDAP goes down, both SAMBA's are down. Anyone got a hint, why it doesn't work? Both SAMBA's can use any LDAP server (master or slave), if only 1 LDAP defined. Best regards, - Rauno Tuul -
jean-marc pouchoulon
2003-Oct-07 09:58 UTC
[Samba] samba-3 PDC & BDC fail-over with 2 LDAP servers fails
>PDC (also master-ldap) smb.conf >passdb backend = ldapsam:ldaps://master-ldap.lanldapsam:ldaps://slave-ldap.lan Beware of the comma : use passdb backend = ldapsam:ldaps://master-ldap.lan, ldapsam:ldaps://slave-ldap.lan, guest Jean-Marc
Andrew Bartlett
2003-Oct-15 06:55 UTC
[Samba] samba-3 PDC & BDC fail-over with 2 LDAPserversfails
On Wed, 2003-10-15 at 16:50, jean-marc pouchoulon wrote:> > It is quite possible that your LDAP libs do not support that syntax. > > What exactly is the version are you using? > > Netscape Directory server 4.16.I mean on the client - the libraries that Samba links against. Andrew Bartlett -- Andrew Bartlett abartlet@pcug.org.au Manager, Authentication Subsystems, Samba Team abartlet@samba.org Student Network Administrator, Hawker College abartlet@hawkerc.net http://samba.org http://build.samba.org http://hawkerc.net -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: This is a digitally signed message part Url : http://lists.samba.org/archive/samba/attachments/20031015/1ba5f565/attachment.bin