AD Server Failover

In configuring WebSEAL, you first use pdconfig to configure the runtime environment. It does not prompt you for more than one AD server, but you can take advantage of such by editing the Policy Directory Active Directory file

sudo vim /opt/PolicyDirector/etc/activedir_ldap.conf


# Active Directory primary domain, its host name, and zero or more replica
# host names.
#
#   Syntax:
#     <nnn> = primary domain name (can be: ibm.com or dc=ibm,dc=com)
#     <hhh> = primary domain hostname or ipaddress
#     <rrr> = primary domain replica hostname or ipaddress
#     Square braces,"[]", are used to show optional entries.  Vertical bar ("|")
#     separator is required.
#
#     primary-domain = <nnn>|<hhh>[|<rrr1>[|<rrr2>[|...]]]


http://pic.dhe.ibm.com/infocenter/tivihelp/v2r1/index.jsp?topic=%2Fcom.ibm.isam.doc_70%2Fameb_baseadmin_guide%2Freference%2Fref_configref.html
Comments