IdP use of LDAP and connection pooling

[Cantor, Scott]

On 9/8/11 3:02 PM, "Jim Fox" <fox at washington.edu> wrote:
>
>We use connection pooling for all our accesses to LDAP.  We use TLS, and
>the overhead of starting up a new session on each query seemed excessive
>to me.  Our openldap servers keep the sessions open all day.

Are you using any of the validation options in the pooling element? I see
the retry count defaults to 1 inside the vt-ldap code, so I'm sure no
matter what I do, it's just going to drop the failed connection and retry.
With some cases like that, the problem is if the closed connections hangs
(very common with database pools) but these don't seem to.

-- Scott