[Samba] samba-3 PDC & BDC fail-over with 2 LDAP servers fails

Tue Oct 7 09:05:21 GMT 2003

Hi,

In samba help: samba-bdc.html there is a section available configs:

Possible PDC/BDC plus LDAP configurations include: 
PDC -> LDAP master, with secondary slave LDAP server. 
BDC -> LDAP slave server, with secondary master LDAP server. 

So I configured it so and tested samba's ability to switch over to backup
LDAP backend.
If both LDAP servers are up, everything is just fine. But when 1 LDAP goes
down, samba should understand it and work with another LDAP.
Well, I doesn't work for me...

PDC (also master-ldap) smb.conf
passdb backend = ldapsam:ldaps://master-ldap.lan
ldapsam:ldaps://slave-ldap.lan

BDC (also slave-ldap) smb.conf
passdb backend = ldapsam:ldaps://slave-ldap.lan
ldapsam:ldaps://master-ldap.lan

case 1) I shut master LDAP down
on PDC 
master-ldap# smbclient -U username -L  (it takes about 15 sec to prompt the
pwd)
Password:
session setup failed: Call timed out: server did not respond after 20000
milliseconds

on BDC
slave-ldap# smbclient -U username -L  (it takes about 15 sec to prompt the
pwd)
Password:
tree connect failed: Call timed out: server did not respond after 20000
milliseconds

case 2) I shut slave LDAP down
on PDC
master-ldap# smbclient -U username -L  (it takes about 15 sec to prompt the
pwd)
Password:
tree connect failed: Call timed out: server did not respond after 20000
milliseconds

on BDC
slave-ldap# smbclient -U username -L  (it takes about 15 sec to prompt the
pwd)
Password:
session setup failed: Call timed out: server did not respond after 20000
milliseconds

In logs of both servers:
  smbldap_search: LDAP server is down!
  smbldap_search_suffix: Problem during the LDAP search: (unknown) (Can't
contact LDAP server)

Basically if 1 LDAP goes down, both SAMBA's are down.
Anyone got a hint, why it doesn't work?
Both SAMBA's can use any LDAP server (master or slave), if only 1 LDAP
defined.

Best regards,

 - Rauno Tuul -