[keycloak-user] connection URL to your LDAP store should be single host?
mj
lists at merit.unu.edu
Sat Sep 15 04:21:48 EDT 2018
We are doing this via a haproxy listener on the localhost, which points
to our three DCs.
MJ
On 09/13/2018 11:22 PM, pkboucher801 at gmail.com wrote:
> Hi,
>
>
>
> Using the LDAP/AD provider, if we set our connection URL to our LDAP store
> like this "ldaps://mydomain.local:636" and we have 3 domain controllers,
> then we get whichever one DNS says to use when we look up mydomain.local.
>
>
>
> Is there any way to get it to fail-over to another one if the first one
> fails to respond?
>
>
>
> Is it best practice to use the domain name, or should we specify one domain
> controller, by IP address, and stick to it (e.g., "ldaps://10.1.2.3:636")?
>
>
>
> Thanks!
>
>
>
> Regards,
>
> Peter Boucher
>
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
>
More information about the keycloak-user
mailing list