Skip to Content
0

Windows AD redundancy of authentication (Kerberos)

Oct 19, 2016 at 09:57 AM

31

avatar image
Former Member

I have been using the AD authentication.
I use single domain to make redundancy.

※reference:1581958 - Windows AD authentication takes very long time to logon
--------------------
[libdefaults]
default_realm = ABCD.MFROOT.ORG
dns_lookup_kdc = true
dns_lookup_realm = true

[realms]
ABCD.MFROOT.ORG = {
kdc = ABCDIR99.ABCD.MFROOT.ORG  ←non-existent domain
kdc = ABCDIR21.ABCD.MFROOT.ORG
kdc = ABCDIR22.ABCD.MFROOT.ORG
kdc = ABCDIR23.ABCD.MFROOT.ORG
default_domain = ABCD.MFROOT.ORG
}
--------------------

In order to test the redundancy, I use a domain not to exist.
But an error(FWM 00006) is output.
Or you can not test in the absence of domain?

10 |10000 characters needed characters left characters exceeded
* Please Login or Register to Answer, Follow or Comment.

0 Answers