LDAP Authentication questions...

[Uwe Laverenz]

On Wed, Jun 18, 2008 at 02:18:17PM -0500, Eric F Crist wrote:

> configured services like ssh.  Now, shouldn't it eventually fail over  
> to my secondary LDAP server?  I've even tried adding timelimit 10 to  
> the ldap.conf file to set a timeout, to no avail.

IIRC you have to change the parameter "bind_timelimit" to get what you
want. The default is 30 seconds, which is too high. This is documented
in the pam_ldap manpage.

Uwe