Re: [nssldap] lookup delay using nss_ldap with Active Directory

[Date Prev][Date Next] [Thread Prev][Thread Next]

From: Klaus Steinberger <klaus.steinberger [at] Physik.Uni-Muenchen.DE>
To: Jonathan Nilsson <jnilsson [at] uci.edu>
Cc: nssldap [at] padl.com, "Douglas E. Engert" <deengert [at] anl.gov>
Subject: Re: [nssldap] lookup delay using nss_ldap with Active Directory
Date: Sat, 08 May 2010 07:00:23 +0200

Hi Jonathan,

>> Are you also using nscd? We have run into issues with nscd timing out,
>> then
>> the command like id will try the ldapsearch itself.
> 
> No, nscd is not being used anywhere in my environment, at least as far
> as I can
> tell:
> 
> $ /etc/init.d/nscd status
> nscd is stopped

You should definitly give nscd a try. Caching is essential. It makes a big
difference.

> Is it possible that it is an indexing issue with Active Directory? Have
> other people had to make modifications to the Active Directory Schema to
> index additional attributes, such as "uid", "member" or "objectclass"?

An index on uid, member, uidNumber, gidNumber would help.

Sincerly,
Klaus

Attachment: klaus_steinberger.vcf
Description: Vcard

[nssldap] lookup delay using nss_ldap with Active Directory, jon.sscs.uci
- Message not available
  - Re: [nssldap] lookup delay using nss_ldap with Active Directory, Jonathan Nilsson
    - Re: [nssldap] lookup delay using nss_ldap with Active Directory, Klaus Steinberger

Prev by Date: Re: [nssldap] lookup delay using nss_ldap with Active Directory
Next by Date: Re: [nssldap] lookup delay using nss_ldap with Active Directory
Previous by thread: Re: [nssldap] lookup delay using nss_ldap with Active Directory
Next by thread: Re: [nssldap] lookup delay using nss_ldap with Active Directory