4:22 p.m.
Hi,
Using the LDAP/AD provider, if we set our connection URL to our LDAP store
like this "ldaps://mydomain.local:636" and we have 3 domain controllers,
then we get whichever one DNS says to use when we look up mydomain.local.
Is there any way to get it to fail-over to another one if the first one
fails to respond?
Is it best practice to use the domain name, or should we specify one domain
controller, by IP address, and stick to it (e.g., "ldaps://10.1.2.3:636")?
Thanks!
Regards,
Peter Boucher
3:21 a.m.
We are doing this via a haproxy listener on the localhost, which points
to our three DCs.
MJ
On 09/13/2018 11:22 PM, pkboucher801(a)gmail.com wrote:
Hi,
Using the LDAP/AD provider, if we set our connection URL to our LDAP store
like this "ldaps://mydomain.local:636" and we have 3 domain controllers,
then we get whichever one DNS says to use when we look up mydomain.local.
Is there any way to get it to fail-over to another one if the first one
fails to respond?
Is it best practice to use the domain name, or should we specify one domain
controller, by IP address, and stick to it (e.g., "ldaps://10.1.2.3:636")?
Thanks!
Regards,
Peter Boucher
_______________________________________________
keycloak-user mailing list
keycloak-user(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user
2280
days inactive
2282
days old
1 comments
2 participants
participants (2)
-
mj -
pkboucher801@gmail.com