Background :
We have NetIQ Access Manager v4.2 configured with Active Directory for
Kerberos authentication. there are 3 DCs in the same Datacenter which
Identity Server can connect; two more DC servers are newly installed in
a DR datacenter and NetIQ IDP is trying to connect to them while
authenticating a user. We don't want the IDP to connect to the 4th and
5th domain controllers since the connectivity between the Datacenter
will be slow. In IDP user store config only 3 domain controllers are
mentioned as LDAP server replicas.
Since the IDP is waiting to connect to the remote Domain controllers,
the user authentication is taking almost 1 min, sometime resulting in
timeout of the authn process.

HOW CAN WE DISABLE \"FOLLOW LDAP REFERRALS\" SETTING IN IDP'S LDAP
CONFIGURATION?
Any pointers will be really helpful


Thanks in advance.


--
edir4ever
------------------------------------------------------------------------
edir4ever's Profile: https://forums.netiq.com/member.php?userid=499
View this thread: https://forums.netiq.com/showthread.php?t=56238