IdP use of LDAP and connection pooling
Chad La Joie
lajoie at itumi.biz
Thu Sep 8 20:38:13 BST 2011
The only gotchya, which I think we documented, is that you can't use
the generic property setting mechanism for those properties which the
IdP does have explicit config options.
On Thu, Sep 8, 2011 at 15:36, Cantor, Scott <cantor.2 at osu.edu> wrote:
> On 9/8/11 3:16 PM, "Ryan Larscheidt" <larscheidt at doit.wisc.edu> wrote:
>
>>A setting that is not specified on that page, but is useful to set, is
>>"com.sun.jndi.ldap.read.timeout". It will save you when the IdP can
>>connect to the directory server host, but the directory server process
>>doesn't reply to the bind (because it's dead, etc). Otherwise, the IdP
>>waits until the TCP connection times out, which is way too long.
>
> Great, that's the sort of thing I was looking for.
>
> I added a link in the wiki page to the VT-LDAP docs because I didn't
> realize that the generic property syntax supported its settings, I thought
> it only handled the JDK stuff.
>
> -- Scott
>
> --
> To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net
>
--
Chad La Joie
www.itumi.biz
trusted identities, delivered
More information about the users
mailing list