We have always had an issue with authenticating against LDAP when under a load. Ours however is not just about it taking longer, it actually fails and required us to put in some custom error trapping. I'd be really curious if there is a way outside of CFLDAP to authenticate against an LDAP server.
On Thu, 31 Mar 2005 10:28:15 -0800, Douglas Knudsen <[EMAIL PROTECTED]> wrote: > ok, after removing the teimeout attribute and SSL stuffs, the issue > continued. So, off to try somethign else. Wonder if the use of a CFC > for the ldap calls is causing anything funny. I'm convinced though > the issue is in the CFLDAP tag or is in our network, maybe a bad > switch on our intranet. > > D > > On Tue, 29 Mar 2005 21:43:09 -0500, Douglas Knudsen > <[EMAIL PROTECTED]> wrote: > > hmm, gonna try this. removed the timeouts, the issue showed up for 4 > > times a few hours later. Really odd. The cfldap calls are in a cfc, > > wonder if something is occuring there. Going to try removing the SSL > > in the cfldap. > > > > D > > > > > > On Tue, 29 Mar 2005 08:57:15 -0600, Dawson, Michael <[EMAIL PROTECTED]> > > wrote: > > > Try removing the timeout attribute and see if that makes a difference. > > > > > > You might also try removing ssl, if possible, just to rule that out. > > > > > > M!ke > > > > > > -----Original Message----- > > > From: Douglas Knudsen [mailto:[EMAIL PROTECTED] > > > Sent: Tuesday, March 29, 2005 7:52 AM > > > To: CF-Talk > > > Subject: CFLDAP under load? > > > > > > we use CFLDAP to auth our users against an LDAP server, a SunOne LDAP > > > server. Occasionaly when unde load, we get a large amount of the LDAP > > > auth queries taking a long time to complete, in the 25 to 60 second > > > range, normally this is takes under 1 second. According to the LDAP > > > admin, the LDAP server has no issues. In fact, there are many many apps > > > throughout our company using the LDAP, most use raw Java to connect and > > > they do not have the issues when we do. The LDAP server is load > > > balanced with failover setup and all. An example query is below. I am > > > using the VIP of the LDAP server as I suspected some sort of DNS issue. > > > Any suggestions on where to look? > > > > > > <cfldap action="QUERY" > > > name="getldap" > > > attributes="DN" > > > start=" o=Alltel" > > > sort="sn ASC" > > > server="192.168.1.1" > > > port="636" > > > filter="uid=#arguments.uid#" > > > maxrows="1" > > > secure="CFSSL_BASIC" > > > timeout="20000" > > > > > > > -- > > > Douglas Knudsen > > > http://www.cubicleman.com > > > this is my signature, like it? > > > > > > > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Logware (www.logware.us): a new and convenient web-based time tracking application. Start tracking and documenting hours spent on a project or with a client with Logware today. Try it for free with a 15 day trial account. http://www.houseoffusion.com/banners/view.cfm?bannerid=67 Message: http://www.houseoffusion.com/lists.cfm/link=i:4:201036 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
