LDAP Replica not working

Nextcloud version 15.0.5
Operating system and version Ubuntu 16.04
Apache/2.4.18 (Ubuntu)
PHP version 7.2

Nextcloud hangs when main LDAP server is not available even the replica is configured and is up and running (Verified).

When I power off the main LDAP server (cache time to live is 10 sec) Nextcloud will hang for about 10min before it will redirect me to the files page. After i’m redirected to the Files page Nextcloud is still working hard, and is very very little responsive. If you try to log in/out again it will still hang for another 10min.

However, if I power on another host with the SAME IP as the main LDAP server it works as expected:
Nextcloud will switch instantly over to the replica LDAP server. The only thing the main LDAP server and the host i made have in common is the IP settings. The host is just a regular Win10 Desktop VM…

This seems weird to me, as long as Nextcloud cant reach anything on the main LDAP IP address it will just hang… and my log is empty…

Steps to replicate it:

  1. Configure LDAP authentication with replica host
  2. Power off your Main LDAP server
  3. Try to log in
  4. Set up any host with the same IP settings as the Main LDAP server

The output of config.php file in /var/www/nextcloud:

$CONFIG = array (
  'instanceid' => 'ocxlics35GRE',
  'passwordsalt' => '+c1KE$GByyuFDTvdmlJf/hMQy',
  'secret' => 'ZhtWz+BQzXH2sTGsrEIMaw34tgDGSe4gertZRgretr4aeAEfg/M',
  'trusted_domains' => 
  array (
    0 => 'xxxxxxt',
  'datadirectory' => '/var/www/nextcloud/data',
  'overwrite.cli.url' => 'https://xxxxxxxx',
  'dbtype' => 'mysql',
  'version' => '',
  'dbname' => 'nextcloud',
  'dbhost' => 'localhost',
  'dbport' => '',
  'dbtableprefix' => 'oc_',
  'dbuser' => 'XXXXXXXXX',
  'dbpassword' => 'XXXXXXXXXX',
  'logtimezone' => 'Europe/Berlin',
  'log_type' => 'file',
  'logfile' => '/var/log/nextcloud.log',
  'loglevel' => 2,
  'log_rotate_size' => '104857600',
  'installed' => true,
  'mail_smtpmode' => 'smtp',
  'mail_smtpauthtype' => 'LOGIN',
  'mail_domain' => 'ucs.local',
  'maintenance' => false,
  'ldapIgnoreNamingRules' => false,
  'mail_smtphost' => 'ucs.local',
  'mail_smtpport' => '25',
  'mail_from_address' => 'notification',
  'theme' => '',
  'updater.release.channel' => 'stable',
  'ldapProviderFactory' => 'OCA\\User_LDAP\\LDAPProviderFactory',
  'memcache.local' => '\\OC\\Memcache\\APCu',
  'twofactor_enforced' => 'false',
  'twofactor_enforced_groups' => 
  array (
  'twofactor_enforced_excluded_groups' => 
  array (
  'mail_sendmailmode' => 'smtp',
  'mail_smtpauth' => 1,

anyone seen this before??


Yes, I have seen this as well. This issue also applies to AD server setups.

Anyone knows how to fix this?

Creating a bug is probably the best thing you can do. :sweat_smile: