[Date Prev][Date Next]
Re: slow ldap authentication
- To: firstname.lastname@example.org
- Subject: Re: slow ldap authentication
- From: bluethundr <email@example.com>
- Date: Tue, 4 Jan 2011 09:53:44 -0500
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:received:in-reply-to :references:date:message-id:subject:from:to:content-type :content-transfer-encoding; bh=dhM7N3cwQBFmxFI4UiDeajphG3HSADqEws1+/mSR0Bo=; b=QN0sH65r0kBYeJFHnvseWu6lqDvHmgmlfpwHKUcqMrell9JKy7g4ztUkKwQKjRsBBO dYF+etXPvfuCpIb//c9akRmZyqkZJc5YF8DxHO6jwe9+dP44A2g9fVeBxJwvORLIHOih ev0FIVYN3QxRioK2aQ2Eod5bPbIPYTTrroQCQ=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type:content-transfer-encoding; b=wExLz92mn3A5fLPknNcXaevo96ipEivwGth6GNbEmjoDopD1drkKL6N9ZEsn9Ew8oF Zkp4L1MVtp96R77YWEbmq8kI4fsiWj8JMINTTZVOqazB3jE6ZodXWCdZHFH0d9g85vRl 5WhI0bbNI9k1GHLHeBjpFxABB8mRBqHGQnBA4=
- In-reply-to: <AANLkTi=R0zbrNydpGZQM64ATeiF4E3-McWEVdVffirstname.lastname@example.org>
- References: <AANLkTi=R0zbrNydpGZQM64ATeiF4E3-McWEVdVfemail@example.com>
It's been a few days and I just wanted to check back to see if anyone
had any troubleshooting tips that might help to solve this situation
that I'm dealing with as I'm still a relatively new LDAP admin. I
really appreciated your advice in the past and have overcome some very
significant technical hurdles with your assistance on a number of
Thanks in advance!and I would like to wish you a belated happy new year!
On Sun, Jan 2, 2011 at 12:58 AM, bluethundr <firstname.lastname@example.org> wrote:
> Hello list!!
> I would greatly appreciate your help with an issue I am having here.
> It seems that when you log into hosts on the network via ldap
> authentication, said authentication is extremely sloooowww... on the
> order of up to 30 seconds to log in! I could use some assistance in
> correlating the information in the logs with the way that slapd.conf
> is configured.
> What I did to capture the event in the logs was to (after backing
> them up) empty them with cat /dev/null > /var/log/openldap.log and
> then log into a host on the network via an ldap account. Right after
> login was finished I copied the log file to another location on the
> nas and enclosed it here. Therefore it reflects only what happened
> during the login. I've also enclosed my slapd.conf and ldap schema as
> attachments for your perusal.
> I've attempted adding some indexes to the configuration to alleviate
> the situation but unfortunately this had no effect. The ones I added
> were uid and uidNumber which I've read can help address this sort of
> [root@LBSD2:~]#grep -i index /usr/local/etc/openldap/slapd.conf
> index objectClass,uid,uidNumber eq
> index sudoUser eq
> thanks in advice with any assistance you can provide.
> best regards
> GPG me!!
> gpg --keyserver pgp.mit.edu --recv-keys F186197B
gpg --keyserver pgp.mit.edu --recv-keys F186197B