IdP use of LDAP and connection pooling

Daniel Fisher dfisher at
Thu Sep 8 20:52:37 BST 2011

On Thu, Sep 8, 2011 at 2:26 PM, Cantor, Scott <cantor.2 at> wrote:

> I'm just wondering these kinds of things:
> - are pools necessary to get reasonable performance on highly loaded IdPs?

I believe so, yes.

> - do they handle failed connections reasonably without ever surfacing them
> as actual data connector failures?

If they don't I hope someone files a bug report.

> - are there ways to maintain connections and avoid the timeouts from the
> client end?

You should be able to configure periodic validation to guarantee your
connections are always alive.

> - is pool validation even needed, or does it just retry on failures and
> handle things gracefully?

Checkin/checkout validation is mainly just for the use cases I couldn't
imagine. Connections will retry once by default on any communication error,
so periodic validation provides the best benefit on top of that.

--Daniel Fisher
-------------- next part --------------
An HTML attachment was scrubbed...

More information about the users mailing list