Security

Hi All,

 

Using ClearPass guest login page with sponsor lookup enabled...

 

Is it possible to perform LDAP sponsor lookups against 2 LDAP server simultaneously?

 

Cheers

J

Hi 

 

I added a second server and changed the priority of the servers.

but the second server will only search if I raise its priority over the first one.

 

This didn't seem to be possible a couple of years ago when I created this post..

 

In the end the customer I was working with decided that it would be more secure to have the guest enter the email address of the contact they were visiting rather than allowing an LDAP lookup of their Active Directory users.

ok thanks for the reply.

With that solution they can type any email address without knowing who can
sponsor their accounts.
Using the LDAP lookup makes it easy to manage for the customer when they
want to add new people to the list.

If i find a solution I will post it.

I added text saying "enter email address of person you are visiting" or something similar... 

 

I would imagine that having 2 x LDAP server lookups may well work now but haven't looked into it for some time. Looking forward to hearing that you have it working.