Hi, Thanks for the suggestion, but i never did it before , if you can share a doc or something would be great.
I use the openssl to generate the certificate, so even i dont know how to configure subjectAltNames. Also if you can explain a bit how i should i proceed would be appreciated. Example : ldap1.example.com ldap2.example.com So in the load balancer what to configure and how to create the certificate. Please help. Regards, Pradyumna On Fri, Sep 9, 2011 at 7:35 PM, Quanah Gibson-Mount <[email protected]>wrote: > --On Thursday, September 08, 2011 10:17 PM +0200 pradyumna dash < > [email protected]> wrote: > > Hi, >> >> >> I would like to setup OpenLDAP Mater-Master replication, before that i >> would like to know something more about it, because i >> never implemented the same. >> >> >> Suppose i have 2 servers ldap1.example.com and ldap2.example.com >> >> >> I will configure M-M replication with LDAPS, in this scenario how my >> architecture should be? Do i need to keep it behind the loadbalancer or >> what are the steps to do it? >> How come the client will come to know if any of the server is down, it >> will talk to the other server, because in my ldap.conf file i will have a >> single URI/host entry >> pointing to one of the server and also how to create the certificate, do >> i need 2 individiual certificate 1 for ldap1 and 1 for ldap2? >> > > I would suggest a cert for ldap1 and ldap2, both with having > subjectAltNames for a load balanced name too, so clients can work directly > to the servers and directly with the LB name. > > --Quanah > > > -- > > Quanah Gibson-Mount > Sr. Member of Technical Staff > Zimbra, Inc > A Division of VMware, Inc. > -------------------- > Zimbra :: the leader in open source messaging and collaboration >
