This bug is created as a clone of upstream ticket:
The current value of 15 for krb5_auth_timeout makes failover of krb5_server(krb5_server=SERVER1,SERVER2) quite slow(15seconds) in certain scenarios, e.g.
- if SERVER1 machine is down
- if packets are DROPPED in SERVER1
Setting krb5_auth_timeout=6 in the above cases allows failover to happen in 6 seconds.
Not sure why krb5_auth_timeout is defaulted to 15. I would suggest it to be lowered to 6.
Temporarily moving bugs to MODIFIED to work around errata tool bug
Verified in version sssd-1.11.2-1.el7
Verified that the value has been updated in manpage to 6 seconds and functionally verified that failover to SERVER2 happens in 6 seconds now.
This request was resolved in Red Hat Enterprise Linux 7.0.
Contact your manager or support representative in case you have further questions about the request.