An Online Community for Identity & Access Management Professionals
siteminder and connection pool
Hi,
Im investigating a possible connection leak and Im wondering how siteminder go about creating/reusing connection to LDAP? Does it maintain a connection pool and is it set somewhere in siteminder?
TIA
Im investigating a possible connection leak and Im wondering how siteminder go about creating/reusing connection to LDAP? Does it maintain a connection pool and is it set somewhere in siteminder?
TIA
Views: 20
Replies to This Discussion
-
Permalink Reply by Todd Clayton on -
It varies a little by directory type, but in general Siteminder opens up three connections when connecting to an LDAP User Store:
- The first connection is to verify that the LDAP server is running. The Policy Server will "ping" the LDAP server using this connection to test if it is available.
- The second connection is used for performing searches and updates against the directory. For example, this can be to disambiguate a user or update last login time.
- The third connection is used for authenticating users. The policy server attempts to bind to the directory with the user's DN and password on this connection.
For directories that can support multiple binds over the same connection (rebinds in the third connection) the behavior is a little different. In general, though, that is how it works.
Todd
© 2012 Created by CoreBlox
