Can I specify more than one LDAP server in the directory services configuration
If you are using eDirectory then putting ldap1.example-cloud.com,ldap2.example-cloud.com will tell webNetwork to use ldap1 server until such time that the LDAP port responds. If it stops responding then it will flip to ldap2. It will stay at ldap2 until ldap2 goes away.
With Microsoft Active Directory this is a bit more tricky due to the way MS LDAP works. MS LDAP utilized DNS to know what all of the domain controllers (LDAP Servers) names are. It does not matter if a server is up or down, if the server is in DNS then there is a chance we will be told to connect to it. This is different from how workstations talk to a domain controller. So you can put dc1.example-cloud.com,dc2.example-cloud.com and it will talk to dc1 until it goes away and then moves to dc2.
Please note that if for example, dc1 goes down, during communication with dc2, webNetwork may be referred to dc1 for the reason that MS LDAP does not have any means for knowing that a dc is down without you the administrator removing it from DNS. Another problem may be that in your host file of UW server you have hard coded your domain example-cloud.com to be the IP address of one of the DC servers. This is another oddity with Microsoft LDAP, it uses the domain name to look up the IP address. In a typical environment, this may resolve to more than one IP address. When you do not hard code it to one specific ip address that webNetwork should talk to, sometimes you will see some delays because we connect to one dc and then get told to go talk to another dc over and over. Hard coding the domain name to the same IP that is used for the LDAP server in webNetwork.
Can't find the KB
Unable to find the KB to address your issue ?
Recent Articles
Change Reset Password Button Text
Change the text of the "Reset Password" button on the UW Login Page How to change the text of the Reset Password button on the Login Page. Login to webNetwork and open webAdmin on your Relay Central Server Expand Customization Center Expand Tenants ...
Remove Reset Password Button From Login Page
Remove the Reset Password Button from the Login Page How to remove the Reset Password button from the Unified Workspace login page. Login to webNetwork and open webAdmin on your Relay Central Server Expand Customization Center Expand Tenants Expand ...
Lenovo Unified Workspace End-of-Life Questions and Answers
As of January 31st 2024, Lenovo Unified Workspace (formerly Stoneware WebNetwork) is no longer supported. This means that we no longer provide licenses, downloads, updates, patches, or technical assistance for this product. If you have any questions ...
How do I determine my Unified Workspace license expiration date?
The best method for determining the licensing information including the expiration date of your Unified Workspace license: Login to your 8090 management console on each server This may take remoting into each LUW server and relay, opening a browser, ...
Lenovo Unified Workspace 7.0.2.13 Released
Highlights of Unified Workspace 7.0.2.13 Before you install: Please view the installation notes here. 7.0.2.13 requires a 7.0 license file. Below is a list of enhancements and fixes released in Unified Workspace 7.0.2.13 Fixed external storage ...
Related Articles
New Directory Services Architecture (AD LDS)
Unified Workspace has always required an LDAP directory service to serve as the primary datastore for the environment. All configuration objects and user data are stored in this underlying directory service. Until now, LUW required this to be the ...
How to display the MS AD LDAP Settings being used.
The following comes from the URL : http://support.microsoft.com/kb/315071 This step-by-step article describes how to manage Lightweight Directory Access Protocol (LDAP) policies by using the Ntdsutil.exe tool. To make sure that domain controllers can ...
LDAP Error Codes
AcceptSecurityContext error, data 52e means "bad password" AcceptSecurityContext error, data 525 means "bad user name" AcceptSecurityContext error, data 773 means "password expiring" or similar. Standard error codes Standard LDAP errors Error / data ...
How to enable SSL for LDAP on Active Directory?
Problem: webNetwork requires SSL over LDAP connection. Cause: To ensure best security possible, you will want "end-to-end" encryption. This is only possible with encrypting the LDAP connection. Without SSL over LDAP some features, such as ...
webNetwork needs to be able to connect to all LDAP registered DCs
Issue Why does webNetwork need to be able to talk to a DC that is not on our local network? Solution Please see the following article for a complete description on how AD LDAP works: ...