--
Please read the blog post about getting help
https://www.privacyidea.org/getting-help/.
For professional services and consultancy regarding two factor authentication please visit
https://netknights.it/en/leistungen/one-time-services/
In an enterprise environment you should get a SERVICE LEVEL AGREEMENT which suites your needs for SECURITY, AVAILABILITY and LIABILITY:
https://netknights.it/en/leistungen/service-level-agreements/
---
You received this message because you are subscribed to the Google Groups "privacyidea" group.
To unsubscribe from this group and stop receiving emails from it, send an email to privacyidea+unsubscribe@googlegroups.com.
To post to this group, send email to priva...@googlegroups.com.
Visit this group at https://groups.google.com/group/privacyidea.
To view this discussion on the web visit https://groups.google.com/d/msgid/privacyidea/e9b826f0-6bb1-4486-a48d-2f9660961bba%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
I had seen that -- I just wasn't aware that tokens were also tied to specific resolvers.In my case, I switched from querying a specific DC to querying the domain, and allowing DNS to handle that portion. I don't have a lot of users, so it wasn't a huge deal to make the switch.But if a Resolver target would need to be replaced in a much larger organization, that could be a LOT of work to troubleshoot. On the other hand, I suppose I could only change the Server URI and not create a new Resolver.