On 22/06/2010 02:09, Luiz Marcelo wrote:

Hello everyone, good, someone could tell me if there is a way to configure a client to openLDAP see an entry in the local database and if this entry does not exist, the server performs the query on another remote server?

I used the chain module for this purpose, but even if the entry exists in the local base, the query is fired to the remote server. I need the server only see the external base case the entry does not exist in the local base.

The goal is to build a scenario for user authentication inter-domains. a user subdomain: "dc=subdomain-A,dc=domain" can authenticate through " dc=subdomain-B,dc=domain"

I thought at first replicate data subdomain A for the subdomain B and vice versa, but I believe it would be more interesting the server be able to perform the query directly in the external server.

Does anyone have an idea?

Re-routing a search to another server if it returned no results on the local server is not easily configurable, AFAIK.

However, you could achieve this result by using a different setup: a proxy server that forwards requests to two servers (one per subdomain).

A recent post on this list discussed this: http://www.openldap.org/lists/openldap-technical/201006/msg00225.html

Jonathan