freeradius wrote: > Hello, > > i tried to implement freeradius 0.8 with two ldapservers for authentication. > i want freeradius to check the one ldap-server first, if user not found, the > other server shoud be asked. > > But the second server will only be used by the radius-server, if the first > server is unreachable. If user is not found in server ldap1 freeradius says: > > rlm_ldap: object not found or got ambiguous search result > ldap_release_conn: Release Id: 0 > modcall[authenticate]: module "ldap1" returns notfound > modcall: group authtype returns notfound > auth: Failed to validate the user. > > just an idea, I don't know if it works ....
How about defining just one ldap server in the radius config files and using the ldap referral feature? In theory, if an item is not found on the first ldap server, then the next server (refered by referral) will be searched .. So, maybe it works, but I have never used referrals :-) regards peda - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
