On Thu, May 15, 2008 at 02:23:27PM -0500, Chris St. Pierre wrote: > On Thu, 15 May 2008, solarflow99 wrote: > > >- Is it possible to set a root user (UID=0) I noticed it doesn't seem to > >let > >me log in that way. > > Yes, you can add an entry to the directory with uidNumber=0. Whether > or not that's a good idea is a different story; personally, I wouldn't > want to have root's credentials centrally in LDAP, for a number of > reasons. > > >- If the clients are authenticating to hostname, how does failover work if > >that host went offline? Having a secondary LDAP instance wouldnt really > >help would it? > > There are a few ways you can do this: > > 1. Linux Virtual Server or another load balancer. > > 2. Poor Man's Load Balancing, a.k.a. DNS "load balancing," and > twiddle your CNAMEs when an LDAP server goes down. It's hackish, but > it works just dandy. 3. Some clients (nss_ldap/openldap) allow you to specify a list of hosts or LDAP URI's to contact in order, so if a resource is unavailable the next is queried. > Chris St. Pierre > Unix Systems Administrator > Nebraska Wesleyan University > > -- > Fedora-directory-users mailing list > Fedora-directory-users at redhat.com > https://www.redhat.com/mailman/listinfo/fedora-directory-users -- Jonathan Barber High Performance Computing Analyst Tel. +44 (0) 1382 386389
