[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Slow LDAP

To: sgmayo@mail.bloomfield.k12.mo.us, openldap-technical@openldap.org
Subject: Re: Slow LDAP
From: Quanah Gibson-Mount <quanah@zimbra.com>
Date: Sun, 30 Aug 2009 18:50:42 -0700
Content-disposition: inline
In-reply-to: <12621.70.246.205.192.1251669883.squirrel@mail.bloomfield.k12.mo.us>
References: <12621.70.246.205.192.1251669883.squirrel@mail.bloomfield.k12.mo.us>

--On Sunday, August 30, 2009 5:04 PM -0500 sgmayo@mail.bloomfield.k12.mo.uswrote:

Is there some way to speed up LDAP?  I am guessing this has to do with it
searching the database on ldap?  This is a new server and my old one did
not take that long.  It is not as slow if just one or two people are
logging in with ldap, but when many login, it seems to bring ldap to a
bottle neck, I guess while searching the directory for all the names.

There are probably about 1000 users in my LDAP.  Is that too large?  I
assume it isn't since most of the other schools around have AD which is
basically Microsoft LDAP if I understand correctly and they have no
problems and have many more users than I have.

I use OpenLDAP with tens of millions of users. It's quite responsive.See comments below.

Can multiple schema's in the config file cause this?  I know that on my
old server I had the following in slapd.conf:

core
cosine
inetorgperson
nis
samba

On my new one it has the above plus:

corba
duaconf
dyngroup
java
misc
openldap
ppolicy
collective

Those were just in there when I installed it so I left them.  Should I
take them out or would that not have any affect on logins at all?  I am
guessing that they wont' affect anything and it is more related to some
sort of configuration in my ldap configs.

Is there something else I need in a config?  Here are my configs.
slapd.conf
include                /etc/openldap/schema/corba.schema
include                /etc/openldap/schema/core.schema
include                /etc/openldap/schema/cosine.schema
include                /etc/openldap/schema/duaconf.schema
include                /etc/openldap/schema/dyngroup.schema
include                /etc/openldap/schema/inetorgperson.schema
include                /etc/openldap/schema/java.schema
include                /etc/openldap/schema/misc.schema
include                /etc/openldap/schema/nis.schema
include                /etc/openldap/schema/openldap.schema
include                /etc/openldap/schema/ppolicy.schema
include                /etc/openldap/schema/collective.schema
include                /etc/openldap/schema/samba.schema
loglevel -1

Fix your loglevel. Try 256 or something else reasonable. Are you runningXen?


--Quanah

--

Quanah Gibson-Mount
Principal Software Engineer
Zimbra, Inc
--------------------
Zimbra ::  the leader in open source messaging and collaboration

Follow-Ups:
- Re: Slow LDAP
  - From: sgmayo@mail.bloomfield.k12.mo.us
- Re: Slow LDAP
  - From: sgmayo@mail.bloomfield.k12.mo.us

References:
- Slow LDAP
  - From: sgmayo@mail.bloomfield.k12.mo.us

Prev by Date: Slow LDAP
Next by Date: Re: Slow LDAP
Index(es):
- Chronological
- Thread