Hello,
I try to configure privacyidea with several ldap resolvers.
So my configuration is:
ldap: //ldap.server1, ldap: //ldap.server2
The resolver test is OK.
I manage to connect with radius server without problem with both ldap server Up and running..
But if I stop the first ldap server (ldap: //ldap.server1), all my radius connections fail.
My server logs are:
rlm_perl: privacyIDEA Access Granted
rlm_perl: return RLM_MODULE_OK
rlm_perl: Added peer NAS-IP-Address = X.X.X.X
rlm_perl: Added peer Password = User-pin + otp
rlm_perl: par Added User-Name = user1
rlm_perl: Added par Message-Authenticator = 0x5d30dd28f37b8a45f34cf3a93472db58
rlm_perl: Added peer NAS-Port = 0
rlm_perl: ERROR: Failed to create peer-Serial privacyIDEA = OATH0000D202
rlm_perl: Added par Reply-Message = privacyIDEA Access Granted
rlm_perl: Added together Auth-Type = Perl
++ [Perl] returns ok
WARNING: Empty post-auth section. Using default return values.
Sending Access-Accept id of 53 to X.X.X.X 53768 Port
Reply-Message = "privacyIDEA Access Granted"
Finished 0 request.
Going to the next request
Waking up in 4.9 seconds.
rad_recv: Access-Request packet from host X.X.X.X 53768 port, id = 53, length = 94
Sending duplicate reply to customer cerbere 53768 Port - ID: 53
Sending Access-Accept id of 53 to X.X.X.X 53768 Port
Waking up in 4.9 seconds.
rad_recv: Access-Request packet from host X.X.X.X 53768 port, id = 53, length = 94
Sending duplicate reply to customer cerbere 53768 Port - ID: 53
Sending Access-Accept id of 53 to X.X.X.X 53768 Port
Waking up in 4.9 seconds.
Cleaning up request with timestamp 53 0 ID 601
Ready to process requests.
And client side with the command radtest:
0) No reply from server socket 53 for ID 3