(RADIATOR) ldap <AuthBy ROUNDROBIN>,

Peter Havekes p.havekes at avans.nl
Wed May 14 05:52:11 CDT 2008 

Wouldn't that be a nice feature for a future release? 
 AuthByPolicy roundrobin - witch uses a random one of the <authby > clauses in the <authby group> and only tries another one if there was no response.



-----Oorspronkelijk bericht -----
Van: "Hugh Irvine" <hugh at open.com.au>
Aan: "Peter Havekes" <p.havekes at avans.nl>
CC: radiator at open.com.au
Verzonden: 14-5-08 00:45
Onderwerp: Re: (RADIATOR) ldap <AuthBy ROUNDROBIN>,


Hello Peter -

Thanks for your mail.

What you describe is not possible in a single instance of Radiator,  
however it is very simple to do with multiple instances of Radiator.

You would have a "front-end" instance of Radiator with an AuthBy  
ROUNDROBIN clause proxying to three "back-end" instances of Radiator  
each with a single AuthBy LDAP2 clause.

This approach has the added advantage of providing some parallel  
processing of simultaneous requests.

I often use this sort of design in my consulting practice.

hope that helps

regards

Hugh


On 13 May 2008, at 22:38, Peter Havekes wrote:

> LS,
>
> At the moment I use Authby group to address multiple LDAP servers.  
> In this setup the second ldap server will only get used if the  
> first ldap server is not responding or rejects the request. I would  
> like to load-balance all the requests amongst all available ldap- 
> servers, like  <AuthBy ROUNDROBIN> does for radius-hosts. Is this  
> possible?
>
> My config looks like this:
>
>
>
>
> <Handler xxxxxxxxxxxxx>
>         <AuthBy GROUP>
>         RewriteUsername s/-//g
>         RewriteUsername s/^([^@]+).*/$1/
>                 AuthByPolicy ContinueUntilAccept
>                 <AuthBy LDAP2>
>                         NoDefault
>                         Host xxxxxxxxxxxxxxxxxxxx
>                         Port 389
>                         BaseDN ou=xxxxxxxxxxxxxxxxxxxxx
>                         UsernameAttr cn
>                         ServerChecksPassword
>                         Timeout 5
>                 </AuthBy>
>                 <AuthBy LDAP2>
>                         NoDefault
>                         Host xxxxxxxxxxxxxxxxxx
>                         Port 389
>                         BaseDN ou=xxxxxxxxxxxxxxxxxxxx
>                         UsernameAttr cn
>                         ServerChecksPassword
>                         Timeout 5
>                 </AuthBy>
>                 <AuthBy LDAP2>
>                         NoDe

--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.

More information about the radiator mailing list