Can builtin LDAP monitor send a v2 request instead of v3

Question

Hi 
&nbsp;  
&nbsp; I have searched around high and low for an answer. 
&nbsp; We have a customised LDAP installation that only accepts LDAP v2 queries. 
&nbsp;  
&nbsp; I just want to app monitor 2 LDAP servers using a LDAP call. 
&nbsp;  
&nbsp; From ethereal trace and LTM debug I can see that the issue seems to be the LDAP version that the LTM is using to make the call. 
&nbsp;  
&nbsp; I believe the LTM is using LDAP v3 call. 
&nbsp; Is it possible to get the LTM to make a LDAP v2 call using the builtin monitor? 
&nbsp;  
&nbsp; To get around this problem I have setup an external monitor to run the LDAPSearch cli command on the LTM which runs a simple LDAPv2 queiry to a level down the tree and then I expect to see SUCCESS and I mark it as up. But im not sure this is the best and most efficient way of monitoring LDAP servers, but its the only way I can specify the V2 call. 
&nbsp;  
&nbsp; Any advice would be great 
&nbsp;  
&nbsp; Thanks 
&nbsp;  
&nbsp; Chris 
&nbsp;  
&nbsp;

hooleylist · Answer

Hi Chris,  
&nbsp;  
&nbsp; I thought you might be able to add a config option like LDAP_VERSION 2 to the /etc/openldap/ldap.conf file, but v3 is still used.  You might try opening a case with F5 Support to see if they have any tricks up their sleaves.  
&nbsp;  
&nbsp; Aaron

Forum Discussion

Can builtin LDAP monitor send a v2 request instead of v3

1 Reply

Recent Discussions

google-visualization-issues

The best load balance method on this scenario?

SMS server with BIGIP

Geo Fence in ASM through irule for URI

Client certificate Authentication - open multiple tabs

Related Content

LTM Pool Connections vs Requests

node monitor vs pool monitor?

APM per-request policy/irule

Node Monitoring vs Pool Monitoring

HTTP Health Monitor Failure Behavior