> For large multi-site organisations, is there any norm as to > how many > LDAP servers (Masters + Slave) should be on the network, > primary > application being network authentication and authorisation. > Point in > perspective being, is it a good practice that every > physical and > geographically disparate site be equipped with a slave LDAP > server?
Lets firs take up Master servers. 1+1 master setup would suffice most of the requirements. Do not use masters for lookups, instead use them only for addition, modification and replication purposes. To have resiliency, one may decide to put these masters in seperate geographical locations. If network latency is large between different sites, it makes more sense to have a dedicated slave server for each site. Also, it depends on the client application whether it can query a secondary server in case primary is not responding. If client application cannot fail over to secondary, you will be required to modify each client manually whenever primary goes down, or simply DNAT the requests coming to primary slave to secondary slave (could be put on different site). regards, Nishant Connect with friends all over the world. Get Yahoo! India Messenger at http://in.messenger.yahoo.com/?wm=n/ _______________________________________________ ilugd mailinglist -- ilugd@lists.linux-delhi.org http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/ilugd@lists.linux-delhi.org/