Skip to main content
quevedo_lopez
quevedo_lopez
New Member
November 22, 2018
Question

Redundant LDAP Servers - FSSO

  • November 22, 2018
  • 2 replies
  • 5776 views

Hi,

I need to configure a FSSO with a redundancy on LDAP servers, a second server of AD for Failover.

 

Thanks in advanced.

    2 replies

    xsilver_FTNT
    Staff
    xsilver_FTNT
    Staff
    November 22, 2018

    Hi,

    how about to have one FSSO Collector agent installed on first DC, asking local LDAP. Plus second FSSO Collector on second DC also asking local LDAP. And then have those two Collectors in one FSSO Agent setting in FortiGate. So when one Collector became unreachable then second one will be used until it fails as well.

     

    So when local LDAP on any of DCs fail, then local collector will fail most probably as well as DC will be in more serious troubles then Collector not running.

    This is usual scenario for FSSO resilience.

    jimzky1026
    jimzky1026
    New Member
    March 20, 2019

    Try to open this link and follow instructions...

    https://kb.fortinet.com/k....do?externalID=FD39911

    scerazy
    scerazy
    Visitor III
    April 4, 2019

    Yes, that is the "normal" working setup

    Terms & ConditionsAccessibility statement