Linux - ServerThis forum is for the discussion of Linux Software used in a server related context.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I have been told to achieve linux AD authentication failover , by configuring multiple AD domain controllers in the linux configs. So that, if one AD domain controller is down, OS should lookup for another domain controller in the config and continue to authenticate, even if one of the domain controller is down.
Please suggest how this can be achieved.
OS used: RHEL 6.9 64 bit
AD solution: Windows Active Dir Services
Thanks
Last edited by soulinlinx; 06-07-2017 at 09:57 PM.
If you have a licensed copy of RHEL you should be able to use the Red Hat support pages, documentation, and forums. Have you researched SAMBA setup with Red Hat already?
Hello Experts -
I have been told to achieve linux AD authentication failover , by configuring multiple AD domain controllers in the linux configs. So that, if one AD domain controller is down, OS should lookup for another domain controller in the config and continue to authenticate, even if one of the domain controller is down.
Please suggest how this can be achieved.
OS used: RHEL 6.9 64 bit
AD solution: Windows Active Dir Services
Read the "Question Guidelines" link in my posting signature. We're happy to help, but you need to do some basic research first, before posting. As said by wpeckham, since you're using RHEL you are paying for it, RIGHT?? Since you are, there is ample documentation in the Red Hat knowledgebase you can access, with complete how-to guides.
In many tools you can specify multiple Active Directory (AD) servers (usually called domain controllers) simply by separating them with a comma.
For example using the ldapsearch command line to see various fields:
ldapsearch -x -H "ldap://<first_domain_contorller>,ldap://<second_domain_controller>" -D "<ad_user>@<ad_domain>" -w '<ad_password>' -b "dc=<ad_domain before the dot>,dc=<ad_domain_after the dot>" -E "pr=1000/noprompt" -s sub cn streetAddress physicalDeliveryOfficeName postalcode title telephoneNumber mobile facsimileTelephoneNumber mail
If your domain were billybob.net what follows -b would be "dc=billybob,dc=net".
It is not about multiple domains, it is about fail over to next DC in same domain, right ?
It do fail over to next DC if DC completely dead. But if it still up, linux locked on it without rolling to next. Even service restart was not helped. The solution was ask windows team fix broken DC that was done with many thanks for alert.
The last time I configured SAMBA the DC was not defined. You set the DOMAIN and it FINDS the DC the same way Windows clients do. I do not remember the version for certain, but that was CentOS v6 so it should be the same version available to you in the RHEL repos.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.