Re: [Freeipa-users] sssd doesn't cache, as it seems

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Hi Jakub, On 01/21/17 13:49, Jakub Hrozek wrote: > > Can you check what kind of query do you see in the LDAP server log? > The git server does just a few queries per hour: [21/Jan/2017:16:27:53.098932003 +0100] conn=8 op=39431 SRCH

Re: [Freeipa-users] sssd doesn't cache, as it seems

> On 21 Jan 2017, at 06:46, Harald Dunkel wrote: > > On 01/20/17 18:42, Simo Sorce wrote: >> >> Is your server being used for authentication ? >> SSSD, by default, always refreshes user credentials on authentication, >> but you can use the cached_auth_timeout setting

Re: [Freeipa-users] sssd doesn't cache, as it seems

On 01/20/17 18:42, Simo Sorce wrote: > > Is your server being used for authentication ? > SSSD, by default, always refreshes user credentials on authentication, > but you can use the cached_auth_timeout setting to relax this > requirement in SSSD, and reduce the roundtrips for auth attempts. >

Re: [Freeipa-users] sssd doesn't cache, as it seems

On Fri, 2017-01-20 at 18:14 +0100, Harald Dunkel wrote: > Hi folks, > > I see a pretty large number of ldap requests sent by our git > server, asking for the same account info again and again. > Sometimes it asks 20 times per second for the same user info, > for example. > > Obviously caching