000022344 - LDAP failover stops working in RSA ClearTrust after disabling the 'validate on reserve' parameter (cleartrust.data.ldap.directory.xxxx.connection.validate_on_reserve :false)

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000022344
Applies ToRSA ClearTrust 5.5.3 Authorization Server (AServer)
Lightweight Directory Access Protocol (LDAP)
IssueLDAP failover stops working in RSA ClearTrust after disabling the "validate on reserve" parameter (cleartrust.data.ldap.directory.xxxx.connection.validate_on_reserve :false)
CauseThe normal LDAP failover mechanism depends on a keepalive within the validate routine for positive failover response. Failover will occur with "validate on reserve" parameter disabled, but only if the server has pending requests when the connection goes down
ResolutionThis issue has been resolved in a hot fix for RSA ClearTrust 5.5.3. Contact RSA Security Customer Support to obtain hot fix 5.5.3.33, or request the latest fix level (which is cumulative, and contains fixes from previous fix levels).
Legacy Article IDa27999

Attachments

    Outcomes