Schema is a big factor as well. Flat schemas with lots of members per ou are much worse than hierarchical schemas with few members per ou. George Toft, CISSP, MSIS My IT Department www.myITaz.com 480-544-1067 Confidential data protection experts for the financial industry. Craig White wrote: > On Sun, 2006-07-02 at 23:46 -0700, Nathan England wrote: > >>I have only setup a handfull of machines to authenticate against my ldap box, >>but I have already noticed performance issues. What is the typical number of >>machines you can have authenticating against an LDAP box? I haven't really >>seen any statistics... > > ---- > in that LDAP is optimized as read often, write little, I would expect > that you shouldn't see any performance drop off for the first few > hundred computers accessing it and nothing of a significant performance > hit for the first few thousand systems. > > You can tune your cache size to keep the entire thing in RAM (assuming > that your DSA is probably not very large). > > Generally, if you are seeing performance slowdowns though, these are the > things you should be looking at: > - searching on unindexed fields (dollars to doughnuts this is your > problem) > - rampant log files (adding to large logs can really slow system down) - > what is loglevel? where is it logging? How big is the file you are > logging to? > - large ssl key ciphers > - cache/RAM - what is cachesize value in slapd.conf? > > Craig > > --------------------------------------------------- > PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us > To subscribe, unsubscribe, or to change you mail settings: > http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss > > --------------------------------------------------- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change you mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss