PQ62519: TRUST ASSOCIATION MUCH SLOWER THAN BASIC AUTHENTICATION | |||||||||||||||||||||||||||||||||||||
![]() |
|||||||||||||||||||||||||||||||||||||
APAR status Closed as program error. Error description Customer is hitting URI being served and secured by WAS with more than 100 users within a 2 minute period using WebSeal and Trust Association. They get an average response time of about 54 seconds. However, this time is only 10 seconds when using Basic Authentication without Trust Association. . The security traces seem to show that several seconds are spent in the LTPA Token Validation cache for every hit.Local fix Problem summary **************************************************************** * USERS AFFECTED: WebSphere Application Server security users * * who uses Trust Association as the * * authentication mechanism. * **************************************************************** * PROBLEM DESCRIPTION: Trust association authentication is * * much slower than other authentication. * **************************************************************** * RECOMMENDATION: * **************************************************************** Trust association is much slower due to the same security credential being created twice.Problem conclusion The first credential is now cached so the same crdential can be retrieved from cache to improve performance.Temporary fix A test fix was supplied.Comments
APAR is sysrouted FROM one or more of the following: PQ61868 APAR is sysrouted TO one or more of the following: Modules/Macros
|
Document Information |
Product categories: Software > Application Servers >
Distributed Application & Web Servers > WebSphere Application
Server > General
Operating system(s):
Software version: 400
Software edition:
Reference #: PQ62519
IBM Group: Software Group
Modified date: Sep 26, 2002
(C) Copyright IBM Corporation 2000, 2006. All Rights Reserved.