APAR status |
Closed as suggestion for future release.
| Error description
WebSphere security performs MapCredentials immediately followed
by Validate when a user makes the first request. Both of these
calls end up authenticating the same user twice. In particular,
the call to getGroupsForUser takes several seconds on each of
the two occasions. If we could take away one of these
(seemingly redundant) calls (the one made during Validate),
this would significantly improve performance for the customer. Local fixProblem summaryProblem conclusionTemporary fixComments
User authentication creates two credentials when ideally only
one should be created. This can cause authentication
performance issues if LDAP response times are long.
The likely causes of the related performance issues are network
problems and LDAP tuning problems. Prior to 3.5.5 APARsPQ48364, PQ52698 and PQ53935 are applicable as well. These
are all contained in the cumulative fix for PQ53953 for 3.5.3,
3.5.4 and 3.5.5.
APAR information | APAR number | PQ53753 | Reported component name | WAS ADVANCED SU | Reported component ID | 5648C8402 | Reported release | 350 | Status | CLOSED SUG | PE | NoPE | HIPER | NoHIPER | Submitted date | 2001-10-19 | Closed date | 2001-11-29 | Last modified date | 2002-02-18 |
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:APAR is sysrouted FROM one or more of the following:
Modules/Macros APAR is sysrouted TO one or more of the following:Modules/Macros
Applicable component levels |
|