HPE Service Manager / Service Center Support and News Forum
Showing results for 
Search instead for 
Do you mean 

configuring failover ldap server.

SOLVED
Go to Solution
Frequent Advisor

configuring failover ldap server.

Hello Experts,

 

Currently there is only one ldap server configured for HPSM.

We are planning for a backup server .

I have gone through the ldap configuration document, regarding failover it says we have to add

ldapserver1:ldapbackup2,1230
ldapserver2:ldapops

 

Can someone explain me what will be ldap server 1 and ldap server 2

 

Please check the attached sm.ini and screen from scldapconfig.

 

 

1 ACCEPTED SOLUTIONS
Highlighted
Valued Contributor

Re: configuring failover LDAP server.

The secondary (backup) server would only be referenced if the primary server was unavailable for 30 seconds, which could conceivably occur during busy periods or when network traffic is high, but otherwise only the primary would be referenced.

 

In both cases you should ensure that the host, port and base directory are specified, otherwise you can see a drop in performance when the secondary server is referenced.

 

So you should have something like:

 

ldapserver1:ldap1.acme.com,389,"DC=Users,OU=Company,O=com"

ldapserver2:ldap2.acme.com,389,"DC=Users,OU=Company,O=com"

 

Assuming the data structure is the same or shared, otherwise a different base directory should be set.

 

You should not make any changes to the scldapconfig records

5 REPLIES
Frequent Advisor

Re: configuring failover ldap server.

sorry unable to attach ...

 

###### LDAP Settings ##############
#ldapdisable:1
ldapauthenticateonly
ldapbinddn:CN=SMAdmin,OU=Resources Accounts,OU=Users,OU=du-Corp,DC=corp,DC=du,DC=ae
ldapbindpass:duLdap2010
ldapnostrictlogin:1
#ldapstats:1
Ldaptimelimit:30

 

SCLDAPCONFIG:

 

Ldap Server :172.23.20.10

Port :389

 

Ldap Base directory:DC=corp,DC=du,DC=ae

Valued Contributor

Re: configuring failover ldap server.

ldapserver1: - should be your primary LDAP server

ldapserver2: - should be your backup LDAP server

 

If server 1 is not available then server 2 will be used for logins etc.

 

If the LDAP configuration is a failover configuration, then this is all you need. If both servers are available at the same time, then login queries may also be handled by the backup server, depending on the configuration and circumstances in the environment. As long as the LDAP servers are in sync, and using the same repository (or a replicated one), you should not encounter any difficulties.

Frequent Advisor

Re: configuring failover ldap server.

Thank you for replying.

 

"If both servers are available at the same time, then login queries may also be handled by the backup server"

 

For the above point can we make only the primary server to handle the request if both are available.

 

and do we have to make any changes in SCLDAPCONFIG table as well.

 

 

Highlighted
Valued Contributor

Re: configuring failover LDAP server.

The secondary (backup) server would only be referenced if the primary server was unavailable for 30 seconds, which could conceivably occur during busy periods or when network traffic is high, but otherwise only the primary would be referenced.

 

In both cases you should ensure that the host, port and base directory are specified, otherwise you can see a drop in performance when the secondary server is referenced.

 

So you should have something like:

 

ldapserver1:ldap1.acme.com,389,"DC=Users,OU=Company,O=com"

ldapserver2:ldap2.acme.com,389,"DC=Users,OU=Company,O=com"

 

Assuming the data structure is the same or shared, otherwise a different base directory should be set.

 

You should not make any changes to the scldapconfig records

Frequent Advisor

Re: configuring failover LDAP server.

thank you 

Appreaciate your help