Configure CLM for LDAP failover
We have LDAP configured for user authentication with IBM WAS and CLM 4.0.6
For some maintenance task, we take the LDAP server down and at that time no one can access CLM applications.
We have multiple backup LDAP servers.
Can we configure CLM in such a way that when main LDAP server is down the user authentication is done by backup LDAP server or if we can configure JTS so that it can forward the request to backup LDAP server automatically?
|
One answer
You can muck around with the jts settings or dns, but both are manual steps, error prone, and at some point, someone will forget to do them.
As mentioned by Sam, you really need to push to have your infrastructure updated to include a load balancer which will do the work automatically.
This is bigger than maintenance, what are you going to do if your ldap goes down, or is flooded?
|
Your answer
Dashboards and work items are no longer publicly available, so some links may be invalid. We now provide similar information through other means. Learn more here.
Comments
wouldn't you change the LDAP DNS entry to provide that? or Load Balance the LDAP servers so that downstream applications don't fail?
I don't want to manually modify the settings in JTS.
You need to change your DNS entry to do that. Say your primary LDAP is ldap.mycompany.com with IP address 192.168.194.101, and the backup LDAP is ldap-b.mycompany.com with IP address 192.168.194.102, then you need to change your DNS to map ldap.mycompany.com to 192.168.194.102 (the backup) when the primary is brought down. If you specify the LDAP server by using IP address in JTS, the only way is use the backup LDAP server is to change its IP address to 192.168.194.101 (same as the primary).