Welcome Serena Central users! CLICK HERE
The migration of the Serena Central community is currently underway. Be sure to read THIS MESSAGE to get your new login set up to access your account.
wyldkao Absent Member.
Absent Member.
2474 views

alt-servers.properties configure ?

Hi ALL
I install ZCM R1 and configu AD as user source, I find a configure file alt-servers.properties in the admi guide .
Novell Documentation

it allows for fail-over to other LDAP Sservers, but I configure as below , it still fail....
Anyone had configured it and work fine....

===========This is my alter-servers.properties for AD========
test.com.tw=\
192.168.0.61:636 \
192.168.0.63:636

===================== end ====================


wyldkao
Labels (2)
0 Likes
7 Replies
jaredljennings Absent Member.
Absent Member.

Re: alt-servers.properties configure ?

wyldkao said on 8/20/2008,

>===========This is my alter-servers.properties for AD========
>test.com.tw=\
>192.168.0.61:636 \
>192.168.0.63:636


Did you import the certificate for each system?

--
Jared Jennings - Data Technique, Inc.
Novell Support Forums Sysop
My Blog and Wiki with Tips, Tricks, and Tutorials
http://jaredjennings.org
0 Likes
wyldkao Absent Member.
Absent Member.

Re: alt-servers.properties configure ?

thanks for your reply
I did not import DC's certificate to ZCM Server.
But When I install ZCM , I use external CA mode , create these certificate by DC's enterprise root CA...

If I need to import DC's certificate to ZCM, Could you provide some steps or documents ??

Thanks for your kindly reply!!

wyldkao
0 Likes
jaredljennings Absent Member.
Absent Member.

Re: alt-servers.properties configure ?

wyldkao said on 8/25/2008,

>I did not import DC's certificate to ZCM Server.
>But When I install ZCM , I use external CA mode , create these
>certificate by DC's enterprise root CA...


Interesting though. Because you did specify during the install that ZCM
should use an external CA, ZCM would already have the signing authority
for the LDAP certificate. The question is if ZCM will automatically accept
the LDAP certificate because the certificate would have been signed by a
trusted authority or must you manually import the certificate.

Would you happen to have a loader-messages.log from when the fail-over
fails?

--
Jared Jennings - Data Technique, Inc.
Novell Support Forums Sysop
My Blog and Wiki with Tips, Tricks, and Tutorials
http://jaredjennings.org
0 Likes
wyldkao Absent Member.
Absent Member.

Re: alt-servers.properties configure ?

I retry modify AD 636 Port to 389 (I also re-configure ZCC's User Source)...
But When I disconnect DC (192.168.0.61 , User Source's Auth. Server), Workstations Could not auth. ....(alt-server.properties still not work)

I attach my alt-server.properties and loader-message.log....

Thanks for your reply!!

wyldkao
0 Likes
jaredljennings Absent Member.
Absent Member.

Re: alt-servers.properties configure ?

wyldkao said on 8/26/2008,

>
>I retry modify AD 636 Port to 389 (I also re-configure ZCC's User
>Source)...
>But When I disconnect DC (192.168.0.61 , User Source's Auth. Server),
>Workstations Could not auth. ....(alt-server.properties still not work)
>
>I attach my alt-server.properties and loader-message.log....
>
>Thanks for your reply!!


I don't see any LDAP traffic in that log, but instead see a lot of jdbc
connections refused. Did you copy the log right after testing?

--
Jared Jennings - Data Technique, Inc.
Novell Support Forums Sysop
My Blog and Wiki with Tips, Tricks, and Tutorials
http://jaredjennings.org
0 Likes
wyldkao Absent Member.
Absent Member.

Re: alt-servers.properties configure ?

Thanks your reply
I think that I know the reason....my second server (DC02) LDAPs may be fail...I change to use 389...it work fine...

I will re-try in the future !!

wyldkao
0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: alt-servers.properties configure ?

wyldkao,

> I think that I know the reason....my second server (DC02) LDAPs may be
> fail...I change to use 389...it work fine...
>
> I will re-try in the future !!


Hope it works well.

--
Jared Jennings - Data Technique, Inc.
Novell Support Forums Sysop
My Blog and Wiki with Tips, Tricks, and Tutorials
http://jaredjennings.org
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.