Forum Discussion

Dietmar_Moltner's avatar
Dietmar_Moltner
Icon for Nimbostratus rankNimbostratus
Jul 01, 2014

Issue with AAA server HA

We are using LDAPS AAA server with APM 11.4.1 but are seeing some strange issues with respect to high availability. Aside from a few bugs around in AAA area (listed in support area), it looks like that APM is not properly detecting if one of the pool members is going down. Within the configuration, we are using pool-based approach and not direct server, adding the 4 server IPs as pool members. Did anyone encounter similar issues in that area?

 

Thx

 

  • nathe's avatar
    nathe
    Icon for Cirrocumulus rankCirrocumulus

    Dietmar, did you create a Server Pool Monitor? It's showing as None above.

     

  • Yes, we created server pool, I just changed it unfortunately before I took the screenshot. We are using LDAP monitor - is this correct or should we pick gateway_icmp? One additional question - do we need to use any retryCount > 1 within the policy elements (LDAP Auth as an example) so that switching between AAA pool members is triggered?

     

    Thx