17.7 Restricting LDAP Failover to a Primary Server’s Defined LDAP Servers

By default, a ZENworks Primary Server will first try all the LDAP server connections defined in its list. If those connections fail, it will then honor all connections available in the zone and fail over to one of them. This ensures that an LDAP request is serviced, even if it is through a less than optimal connection.

If you don’t want this default behavior, you can restrict failover to only include the Primary Server’s defined LDAP servers. This means, of course, that the request fails if connections to all defined LDAP servers fail.

To restrict a Primary Server to using only the LDAP server connections defined for it, modify the following file:

Windows: %ZENWORKS_HOME%\conf\datamodel\authsource\authsourceconfig.xml

Linux: /etc/opt/novell/zenworks/datamodel/authsource/authsourceconfig.xml

In this file, change:

<HonorAllConnectionsOnFailover>true</HonorAllConnectionsOnFailover>

to

<HonorAllConnectionsOnFailover>false</HonorAllConnectionsOnFailover>

and restart the ZENworks Services.