LDAP - configuring multiple LDAP Servers

Last updated
Save as PDF
Share
1. Share
2. Tweet
3. Share

Article Type: General
Product: MetaLib
Product Version: 4

Description:
We have two institutional LDAP servers. How do I configure PDS to work with both servers?

Resolution:
First create two configuration files for both LDAP servers.
i.e: ldap_first.conf
[general]
host_name = first.ldap.server.com
port = 636
search_base = ou=AZG,ou=UB,o=rug
search_filter = (cn=USERNAME)
init_bind_dn = cn=keterttk,ou=AZG,ou=UB,o=rug
init_bind_password = errrtmrtrbine
[xml setting]
xml_root_node = bor_authentication
[attributes mapping]
cn = z312_name
mail = z312_email_address
secure_ldap = Y

Second conf file = ldap_second.conf
[general]
host_name = second.ldap.server.com
port = 636
search_base = ou=AZG,ou=UB,o=rug
search_filter = (cn=USERNAME)
init_bind_dn = cn=ettetrak,ou=AZG,ou=UB,o=rug
init_bind_password = dervgtr
[xml setting]
xml_root_node = bor_authentication
[attributes mapping]
cn = z312_name
mail = z312_email_address
secure_ldap = Y

Change tab_service.inst accordingly :
Confirm that one LDAP server is working.

INSTITUTE-CODE MYUNIV
SERVICES AUTHENTICATE
PROGRAM-NAME ldap.pl ldap_first.conf

Next add the second line to tab_service.inst underneath as follows:
(the third line is for metalib authentication which can be removed while debugging, but must be returned so staff can use default users):
INSTITUTE-CODE MYUNIV
SERVICES AUTHENTICATE
PROGRAM-NAME ldap.pl ldap_first.conf
PROGRAM-NAME ldap.pl ldap.second.conf
PROGRAM-NAME metalib_x_server.pl 19.15.19.71,8331,BOR-AUTH

Article last edited: 10/8/2013