Centrify

Tips for finding Knowledge Articles

  • - Enter just a few key words related to your question or problem
  • - Add Key words to refine your search as necessary
  • - Do not use punctuation
  • - Search is not case sensitive
  • - Avoid non-descriptive filler words like "how", "the", "what", etc.
  • - If you do not find what you are looking for the first time,reduce the number of key words you enter and try searching again.
  • - Minimum supported Internet Explorer version is IE9
Home  >
article

KB-11013 Boosting Centrify LDAP Proxy performance by enabling in-memory cache

Authentication Service ,  

10 September,18 at 07:00 AM

 Question: The response time of ldapproxy is not good enough when a large number of concurrent sessions attempting to the server. Is there any way to improve the performance?

Answer: Starting from Centrify Suite 2017.2 we have introduced a cache mechanism and it boost the performance of ldapproxy.
 

Steps to enable the in-memory cache of Centrify ldapproxy

  1.   Open /etc/centrifydc/openldap/slapd.conf 
  2. Adding below parameters in the config file
ldapproxy.cache.enabled true
ldapproxy.cache.max.lists 100
ldapproxy.cache.max.objects 3000
ldapproxy.cache.ttl 3600
ldapproxy.cache.negative.ttl 300
ldapproxy.cache.hash.loadfactor 1.3
  1.   Restart ldapproxy process  


 

 
 
Further explanation for ldapporxy memory cache setting:
ldapproxy.cache.enabledThis is to enable/disable memory cache.
Enable memory cache by setting it to true, default is false.
ldapproxy.cache.max.lists

 

This is to set the max list count, each different ldapsearch use one list,
default is 100 which means by default, we max support 100 different ldapsearches.

ldapproxy.cache.max.objectsThe is to set memory cache's max object count,
default is 3000 which means by defualt, we max store 3000 different objects for all ldapsearches.
ldapproxy.cache.ttlThis is to set the memory cache's ttl, default is 3600s
ldapproxy.cache.negative.ttl

 

This is to set memory cache's negative ttl, default is 300s

ldapproxy.cache.hash.loadfactor

 

This is to set the hash's load factor, default is 1.3

Related Articles

 articleKB-6041: How to show current license type in use by adclient articleKB-6040: How to change the license type in use after adclient successful joined to the AD? articleKB-6073: How to join the Linux/Unix Centrify Server to Active Directory with specific Computer Role? articleKB-6056: How to report the group policy settings that are in effect for the local computer? articleKB-6038: How to specify the license type to use when joining the server to AD using adjoin? articleKB-7555: Unable to login as root after upgrade to Centrify Suite 2016 (CDC 5.3.0) articleKB-10195: How to enable Centrify DB2 plugin caching? articleKB-20210: Common Questions Regarding Centrify DirectControl and CoreOS articleKB-6044: How to configure users for automatic Kerberos Credentials for infinite renewal even after users have logged out?