Hi Andrew,
I’m afraid it’s often happening during the initial population if the cache. Also these
host are all LDAP only and caching with nscd, as they only need user and group name
resolution. This was done to minimise changes to their software image as they’re
stateless/diskless hosts.
Get Outlook for iOS<https://aka.ms/o0ukef>
________________________________
From: Andrew Radygin <randrewg(a)gmail.com>
Sent: Monday, December 11, 2017 7:54:45 PM
To: FreeIPA users list
Cc: Aaron Hicks
Subject: Re: [Freeipa-users] FreeIPA connection limits?
Does sssd caching of privileges is working?
I mean, suppose if there is no reply from IPA-server, it should use local cache for
existing users.
2017-12-11 0:08 GMT+03:00 Aaron Hicks via FreeIPA-users
<freeipa-users@lists.fedorahosted.org<mailto:freeipa-users@lists.fedorahosted.org>>:
Hello the list,
We’ve got a number (hundreds) of hosts inside a private network, these all query the
FreeIPA server for user and group information using NAT and a gateway server.
However we’re having issues with the LDAP queries timing out or becoming unresponsive.
Is there a limit on the number of concurrent connections from a single host (e.g. the NAT
gateway)?
Is there a way of increasing the number of simultaneous connections to FreeIPA/dirsrv?
Regards,
Aaron
_______________________________________________
FreeIPA-users mailing list --
freeipa-users@lists.fedorahosted.org<mailto:freeipa-users@lists.fedorahosted.org>
To unsubscribe send an email to
freeipa-users-leave@lists.fedorahosted.org<mailto:freeipa-users-leave@lists.fedorahosted.org>
--
Best regards, Andrew.