Tips for finding Knowledge Articles

  • - Enter just a few key words related to your question or problem
  • - Add Key words to refine your search as necessary
  • - Do not use punctuation
  • - Search is not case sensitive
  • - Avoid non-descriptive filler words like "how", "the", "what", etc.
  • - If you do not find what you are looking for the first time,reduce the number of key words you enter and try searching again.
  • - Minimum supported Internet Explorer version is IE9
Home  >

KB-11013 Boosting Centrify LDAP Proxy performance by enabling in-memory cache

Authentication Service ,  

10 September,18 at 07:00 AM

 Question: The response time of ldapproxy is not good enough when a large number of concurrent sessions attempting to the server. Is there any way to improve the performance?

Answer: Starting from Centrify Suite 2017.2 we have introduced a cache mechanism and it boost the performance of ldapproxy.

Steps to enable the in-memory cache of Centrify ldapproxy

  1.   Open /etc/centrifydc/openldap/slapd.conf 
  2. Adding below parameters in the config file
ldapproxy.cache.enabled true
ldapproxy.cache.max.lists 100
ldapproxy.cache.max.objects 3000
ldapproxy.cache.ttl 3600
ldapproxy.cache.negative.ttl 300
ldapproxy.cache.hash.loadfactor 1.3
  1.   Restart ldapproxy process  


Further explanation for ldapporxy memory cache setting:
ldapproxy.cache.enabledThis is to enable/disable memory cache.
Enable memory cache by setting it to true, default is false.


This is to set the max list count, each different ldapsearch use one list,
default is 100 which means by default, we max support 100 different ldapsearches.

ldapproxy.cache.max.objectsThe is to set memory cache's max object count,
default is 3000 which means by defualt, we max store 3000 different objects for all ldapsearches.
ldapproxy.cache.ttlThis is to set the memory cache's ttl, default is 3600s


This is to set memory cache's negative ttl, default is 300s



This is to set the hash's load factor, default is 1.3