Daniel Fisher dfisher at
Mon May 16 21:26:08 EDT 2016

On Mon, May 16, 2016 at 7:21 PM, Mark Boyce <Mark.Boyce at> wrote:

> When pooling AD Domain Controllers and adding
> “connectionHandler="edu.vt.middleware.ldap.handler.DefaultConnectionHandler{{connectionStrategy=ACTIVE_PASSIVE}}"”
> (as prescribed at
> I
> am seeing the following:
> 1)            User enters bad password
> 2)            Shibboleth (yes, it is the underlying
> edu.vt.middleware.ldap.jaas.LdapLoginModule) attempts to authenticate the
> user at each DC in the pool; having failed to bind as the user, it would
> appear that edu.vt.middleware.ldap.jaas.LdapLoginModule is interpreting
> this as a failure of the server and promptly moving on to the next server
> in the pool

Can you post some debug logs of this?

--Daniel Fisher
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the users mailing list