Getting timeout when trying to authenticate on Red Hat Identity Management with failover configuration

Solution Verified - Updated -


The default sssd authentication timeout is eight minutes. An IPA client will wait this long for an authentication service to respond before trying the next authentication service.

  ldap_connection_expire_timeout (integer) Specifies a timeout (in seconds) that a connection to an LDAP server will be maintained. After this time, the connection will be re-established. If used in parallel with SASL/GSSAPI, the sooner of the two values (this value vs. the TGT lifetime) will be used.


  • Red Hat Identity Management (IdM)
    • 4.6
  • Red Hat Enterprise Linux
    • 7.6

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In