We have an Active Directory Realm configured to use ldaps (SSL/TLS).
Does anyone know if the system uses pooled connections to the AD server vs creating a new connection for each authentication request?
Also wondering how long/if the system caches search results, i.e. a users credentials and group membership?
Thank you for you time.
This is configurable, however the pool requires that you provide a system wide bind_dn user to establish connections for the pool. See: Active Directory User Authentication | X-Pack for the Elastic Stack [6.1] | Elastic
This is also configurable. See cache.ttl in the AD realm settings
Thanks for the direction Tim. That was helpful.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.