On Mon, Dec 11, 2017 at 06:48:36PM +0000, Aaron Hicks wrote:
No, our FreeIPA instance is stand alone, but we’ll be implementing replication soon.
Then it would be good to see the access logs of the directory server during the time the directory server is unresponsive or slow. You can find them at /var/log/dirsrv/slapd-YOUR-IPA-DOMAIN/access*
bye, Sumit
Get Outlook for iOShttps://aka.ms/o0ukef ________________________________ From: Sumit Bose via FreeIPA-users freeipa-users@lists.fedorahosted.org Sent: Monday, December 11, 2017 9:06:53 PM To: freeipa-users@lists.fedorahosted.org Cc: Sumit Bose Subject: [Freeipa-users] Re: FreeIPA connection limits?
On Mon, Dec 11, 2017 at 10:08:50AM +1300, Aaron Hicks via FreeIPA-users wrote:
Hello the list,
We've got a number (hundreds) of hosts inside a private network, these all query the FreeIPA server for user and group information using NAT and a gateway server.
However we're having issues with the LDAP queries timing out or becoming unresponsive.
Is there a limit on the number of concurrent connections from a single host (e.g. the NAT gateway)?
Is there a way of increasing the number of simultaneous connections to FreeIPA/dirsrv?
Are you using a trust to AD? In this case you might hit https://pagure.io/freeipa/issue/5464.
bye, Sumit
Regards,
Aaron
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-leave@lists.fedorahosted.org
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-leave@lists.fedorahosted.org
freeipa-users@lists.fedorahosted.org