CAS & LDAP
Michael Ströder
michael at stroeder.com
Fri Jul 25 12:11:07 EDT 2008
Scott Battaglia wrote:
> We even found during our load testing of Sun's LDAP server that there
> was no discernible difference in performance using the normal bind vs.
> the fastbind.
No wonder because I doubt that Sun's LDAP server computes a security
token like AD does.
See description for Token-Groups Attribute at MSDN:
http://msdn.microsoft.com/en-us/library/ms680275(VS.85).aspx
Note the "transitive group membership expansion operation". Not sure
whether that's computed each time a normal simple bind is done or only
if tokenGroups attribute is requested. I suspect it's done each time and
therefore they invented "fast bind".
Ciao, Michael.
More information about the cas
mailing list