Moreover, what I observe is that the switch over is not very fast. In sssd man page it says it will re-check on every 30 second to ensure the server is offline or online.

Is there any way to make it quick? I know this is an SSSD question not LDAP.

Another question regarding Multi-master replication.

If I do a change on one server while another is offline, the changes does not get pushed immediately to another server. I believe there is some time period before it probes the peer LDAP server.

How can I change that timer valued to make it quicker.


--
http://about.me/chandank



On Mon, Dec 10, 2012 at 2:44 PM, Chandan Kumar <chandank.kumar@gmail.com> wrote:
oh! yeah I was about to reply. Yes that working. I was using authconfig-tui and it did not restart the sssd service to take effect.

I manually restarted and it worked.

Thanks for quick reply.


--



On Mon, Dec 10, 2012 at 2:39 PM, Dan Lavu <dan@lavu.net> wrote:
Yup, that should be fine, did you test it? When you test it make sure you disable credential_caching. 


On Dec 10, 2012, at 5:29 PM, Chandan Kumar <chandank.kumar@gmail.com> wrote:

Hello,

I have setup two directory servers on multi-master replication and would like to setup them as fail over servers on the client side.

I am using sssd on client side, and I did specify both ldap servers on /etc/openldap/ldap.conf and /etc/sssd/sssd.conf like below

[root@dsl cacerts]# cat /etc/openldap/ldap.conf

URI ldaps://ldap02.mam.net ldaps://ldap.mam.net
--------------------------------------------------------------------------
[root@dsl cacerts]# cat /etc/sssd/sssd.conf
[domain/default]
ldap_uri = ldaps://ldap02.mam.net, ldaps://ldap.mam.net

I am using Centos 6.3 on both side and yum installed the directory server from default Centos repo.

--
389 users mailing list
389-users@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/389-users


--
389 users mailing list
389-users@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/389-users