[38723] in Kerberos
Re: KDC with openldap backend, ldap replication,
daemon@ATHENA.MIT.EDU (Andreas Hasenack)
Wed Apr 15 08:52:14 2020
MIME-Version: 1.0
In-Reply-To: <dee59100-99ae-607b-16f4-80bfa0a3490c@mit.edu>
From: Andreas Hasenack <andreas@canonical.com>
Date: Wed, 15 Apr 2020 09:49:29 -0300
Message-ID: <CANYNYEFBJ7Z2BFuk2KWABMvHJqbd_J_Jv48uhgqvoinJQx3K1g@mail.gmail.com>
To: <kerberos@mit.edu>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
Hello,
On Wed, Apr 15, 2020 at 1:54 AM Greg Hudson <ghudson@mit.edu> wrote:
>
> On 4/14/20 3:34 PM, Andreas Hasenack wrote:> Can mit kerberos (1.17 for
> the purpose of this conversation) using the
> > openldap backend (kldap) chase ldap referrals when it tries to write
> > to an openldap replica, which is read-only?
> >
> > In other words, can I list both the openldap primary and its read-only
> > replica in krb5.conf's ldap_servers parameter?
>
> I don't believe we support this. This came up a number of years ago:
>
> https://krbdev.mit.edu/rt/Ticket/Display.html?id=7754
Thanks for the pointer!
Cheers
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
