Hi Erik,
I know it has been quite some time since you put this in, and you may have resolved your issue. You might want to look at CS158333, which shows how to enter two servers on a single jndi adapter (what you are looking for). If the first doesn't work then Windchill looks at the second.
Note: Each user ID in Windchill should be unique across all JNDI adapters
- The recommended approach to achieve Ldap fault tolerance is to point the JNDI Adapter Provider Url property to one server/router and manage the failover at DNS level or using TCP-based load balancer
- Another option could be to set the provider url to 2 servers separated by a space both in the JNDI adapter and in Apache configuration.
- Note that this configuration has not been QA tested by PTC and is therefore not officially supported
- Customer should validate that this behave correctly for their site
- Example of configuration
- Apache
- AuthLDAPURL in appWindchill-Auth.conf should be: (make sure the string is quoted in all the configuration files):
"ldap://server1.company.com:3268 server2.company.com:3268/DC=company,DC=com?sAMAccountName?sub?(memberOf=CN=PDMLink-User,OU=PTC,OU=Applications,DC=company,DC=com)" - See Configure Apache for Authentication at CS29454 to set this value
- AuthLDAPURL in appWindchill-Auth.conf should be: (make sure the string is quoted in all the configuration files):
- JNDI Adapter
- Provider Url should be set to (ldap:// is needed for both server here - the quotes should be removed)
- Apache
"ldap://server1.company.com:3268 ldap://server2.company.com:3268"
Thanks,
Micah