Active directory with dns and round robin domain controllers

Question

Dear all,I've a problem of authentication on fmeserver when I configure some details in the User Management > Directory Servers. Our Active Directory as 9 servers behind a load balancer with a dns alias. I've tried some configuration and only the worst works as desired. Here there are my tests: 1) desired solution:host with DNSalternate servers ipResult: SSO login works, but API token request and user/pass login don't work 2) mixed solution:host with one ip of the 9 in listalternate servers ipResult: SSO login and API token request work, but user/pass login doesn't work 3) worst solution:host with one ip of the 9 in listno alternate servers ip specifiedResult: SSO login API token and user/pass login work There is a solution to have the first configuration working as the third? Thanks

merlinegeorge · Answer

Hello @giosp​,We do not support the load balancer DNS alias to be set as the "Host" in AD connection on FME Flow GUI. The  2nd solution should work with "Host" as one of the 9 servers and the rest of them listed as "Alternate Servers".  However, are there multiple KDC hosts? We do not currently support multiple KDC hosts but we have an enhancement ticket. Currently, when leaving the “KDC Host” empty in the connection setting in this multiple KDC scenario, it might not work at all. Specifying one of the domain controllers will occasionally work if the user is connected through that specific DC.

Reply

Community Stats

Reply

Community Stats

Sign up

An FME Account is required to contribute

Login to the community

An FME Account is required to contribute

Scanning file for viruses.

This file cannot be downloaded