[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: LDAP Group Membership Scalability

To: openldap-technical@openldap.org
Subject: Re: LDAP Group Membership Scalability
From: David Hawes <dhawes@vt.edu>
Date: Fri, 08 Aug 2008 18:29:26 -0400
In-reply-to: <489CC0ED.4030702@symas.com>
References: <5FE418C6-8920-420F-B793-CB8ACA91119E@fieldsolutions.com> <489CC0ED.4030702@symas.com>
User-agent: Thunderbird 2.0.0.16 (Macintosh/20080707)

Howard Chu wrote:

Jeff Sussna wrote:
I am looking into using OpenLDAP to manage users and groups for my
system. A single group may contain up to 50,000 users. Does the LDAP
group membership mechanism suffer any scalability problems at that size?
Not if you configure sortvals - see slapd.conf(5) or slapd-config(5).
One of our partners has a group in their corporate directory whose members comprise every employee in the company, over 380,000 people. Personally I think this is a poor choice of design, but it works fine when properly configured.

I did some testing a while back without sortvals and was able to put around 90k members in a group before I started running into issues with adding/modifying the group.

A simple tweak of the bdb lockers in DB_CONFIG allowed me to create a group with 450k members. The corresponding LDIF was around 20M.

References:
- LDAP Group Membership Scalability
  - From: Jeff Sussna <jsussna@fieldsolutions.com>
- Re: LDAP Group Membership Scalability
  - From: Howard Chu <hyc@symas.com>

Prev by Date: Re: LDAP Group Membership Scalability
Next by Date: RE: LDAP Group Membership Scalability
Index(es):
- Chronological
- Thread