Active Directory Realm Performance

We have an Active Directory Realm configured to use ldaps (SSL/TLS).

Does anyone know if the system uses pooled connections to the AD server vs creating a new connection for each authentication request?

Also wondering how long/if the system caches search results, i.e. a users credentials and group membership?

Thank you for you time.

This is configurable, however the pool requires that you provide a system wide bind_dn user to establish connections for the pool. See: Active Directory User Authentication | X-Pack for the Elastic Stack [6.1] | Elastic

This is also configurable. See cache.ttl in the AD realm settings


Thanks for the direction Tim. That was helpful.

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.