FishNiX_29746
May 12, 2010Nimbostratus
Help with LDAPS health monitor v9.4.8
We are trying to load balance some members which vend ldaps with selfsigned certs. I don't really want to import the CA or anything like that... but I am unable to get the members to go active. The members have reverse DNS that matches the cert name (which the F5 Config Guide says is required).
b monitor ad_ldaps_monitor list
monitor ad_ldaps_monitor {
defaults from ldap
debug "no"
mandatoryattrs "no"
password "xxxxxxxxx"
security "ssl"
username "xxxxxxx"
passwd "xxxxxxxx"
}
b pool addev_pool_ldaps list
pool addev_pool_ldaps {
lb method least conn
monitor all ad_ldaps_monitor
members
111.111.111.111:ldaps
222.222.222.222:ldaps
333.333.333.333:ldaps
}
We are running 9.4.8 so I don't believe we are effected by the bug in 9.4.5