[38473] in Kerberos
Re: Master-master deployment?
daemon@ATHENA.MIT.EDU (Benjamin Kaduk)
Sat Feb 2 13:14:22 2019
Date: Sat, 2 Feb 2019 12:14:08 -0600
From: Benjamin Kaduk <kaduk@mit.edu>
To: Yegui Cai <caiyegui@gmail.com>
Message-ID: <20190202181408.GK93251@kduck.mit.edu>
MIME-Version: 1.0
Content-Disposition: inline
In-Reply-To: <CAJYMFR5w0Nb-Za8YuETnFi=Rhc7MbS_o8e1i5KRfV-qNCSMCQw@mail.gmail.com>
Cc: kerberos@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
Most of the instances I've heard about that use multi-master KDCs also use
multi-master LDAP replication, to avoid the SPOF.
-Ben
On Sat, Feb 02, 2019 at 11:12:33AM -0500, Yegui Cai wrote:
> Hi Thor.
> So you have a shared ldap? If so, could that ldap be a single point of
> failure?
>
> Thanks,
> Yegui
>
> On Sat, Feb 2, 2019 at 11:10 AM t Seeger <tseegerkrb@gmail.com> wrote:
>
> > Hey Yegui,
> >
> > I use a mutli master setup. For the sync I use openldap.
> >
> > Greeting Thor
> >
> > On 2. Feb 2019, at 15:38, Yegui Cai <caiyegui@gmail.com> wrote:
> >
> > Hi all.
> > I know the official document recommend master-slave deployment for
> > production environment.
> > Wonder if any try to do a master-master deployment? If yes, how could you
> > sync between two masters?
> > Thanks,
> > Yegui
> >
> > ________________________________________________
> > Kerberos mailing list Kerberos@mit.edu
> > https://mailman.mit.edu/mailman/listinfo/kerberos
> >
> >
> ________________________________________________
> Kerberos mailing list Kerberos@mit.edu
> https://mailman.mit.edu/mailman/listinfo/kerberos
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
