Hi all.
Hopefully someone knows something about this.
We have 8380 Control Center, plus four 8360 scanners.
When this happened the first time, I thought it was a fluke.
But recently it has happened again.
We use LDAP to sync with our active directory. These options are selected: Authentication, Synchronization, Recipient Validation.
Under Invalid Recipients, we chose to use the option to Drop invalid recipients.
Well, we had a planned network outage in the datacenter where the Control Center resides. Due to this the control center failed to sync with AD and also failed to replicate updates to the scanners.
When the network came up, ALL four scanners started dropping ALL inbound mail as if it was sent to invalid recipients.
As I mentioned this was the second time this happened. The first time was also due to some network problems, but we had just installed all the appliances, so I wrote that incident off as a fluke.
Is there a known issue that is causing the scanners to lose the local replica of LDAP database after the control center fails to do its own LDAP sync?
P.S. also I have been told that in order to use the Reject Invalid Recipients option, we have to allow port 389 from every scanner directly to the active directory domain controllers. Is this true? Our scanners are in the DMZ and we aren't too crazy about this idea.
Thanks in advance for any help!