Cantor, Scott cantor.2 at osu.edu
Wed Apr 10 12:25:34 EDT 2019

On 4/10/19, 11:16 AM, "users on behalf of cneberg" <users-bounces at shibboleth.net on behalf of cneberg at gmail.com> wrote:

> Yes, I believe that is what is happening.    Since there was an error
> I'd like it to retry, preferably to a different ldap server in the
> list and if that fails -  return an error to the user.      If there
> is an ldap error I don't think it makes sense to treat it the same as
> the user not being in ldap.

That's what noResultIsError manages. But that didn't fit what you were describing as the error, in my experience anyway. But my LDAP knowledge is rudimentary.

But it will *not* retry a different server if it gets back no result. Either that's an error or it's not, but it isn't a retryable one. You don't stack LDAP servers that way, you'd use Failover connectors to manage search of discrete data sets.

-- Scott

More information about the users mailing list