LDAP performance issues
George Toft
george at georgetoft.com
Tue Jul 4 11:53:49 MST 2006
Schema is a big factor as well. Flat schemas with lots of members per
ou are much worse than hierarchical schemas with few members per ou.
George Toft, CISSP, MSIS
My IT Department
www.myITaz.com
480-544-1067
Confidential data protection experts for the financial industry.
Craig White wrote:
> On Sun, 2006-07-02 at 23:46 -0700, Nathan England wrote:
>
>>I have only setup a handfull of machines to authenticate against my ldap box,
>>but I have already noticed performance issues. What is the typical number of
>>machines you can have authenticating against an LDAP box? I haven't really
>>seen any statistics...
>
> ----
> in that LDAP is optimized as read often, write little, I would expect
> that you shouldn't see any performance drop off for the first few
> hundred computers accessing it and nothing of a significant performance
> hit for the first few thousand systems.
>
> You can tune your cache size to keep the entire thing in RAM (assuming
> that your DSA is probably not very large).
>
> Generally, if you are seeing performance slowdowns though, these are the
> things you should be looking at:
> - searching on unindexed fields (dollars to doughnuts this is your
> problem)
> - rampant log files (adding to large logs can really slow system down) -
> what is loglevel? where is it logging? How big is the file you are
> logging to?
> - large ssl key ciphers
> - cache/RAM - what is cachesize value in slapd.conf?
>
> Craig
>
> ---------------------------------------------------
> PLUG-discuss mailing list - PLUG-discuss at lists.plug.phoenix.az.us
> To subscribe, unsubscribe, or to change you mail settings:
> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>
>
More information about the PLUG-discuss
mailing list