Skip to Content
avatar image
Former Member

Windows AD redundancy of authentication (Kerberos)

I have been using the AD authentication.
I use single domain to make redundancy.

※reference:1581958 - Windows AD authentication takes very long time to logon
--------------------
[libdefaults]
default_realm = ABCD.MFROOT.ORG
dns_lookup_kdc = true
dns_lookup_realm = true

[realms]
ABCD.MFROOT.ORG = {
kdc = ABCDIR99.ABCD.MFROOT.ORG  ←non-existent domain
kdc = ABCDIR21.ABCD.MFROOT.ORG
kdc = ABCDIR22.ABCD.MFROOT.ORG
kdc = ABCDIR23.ABCD.MFROOT.ORG
default_domain = ABCD.MFROOT.ORG
}
--------------------

In order to test the redundancy, I use a domain not to exist.
But an error(FWM 00006) is output.
Or you can not test in the absence of domain?

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

0 Answers