Speed up object creation in Novell eDirectory

Speed up object creation in Novell eDirectory

Issue:

How can I speed up the creation of objects? I have directory caching enabled, and I also have several LDAP indexes. Am I missing something?


Solution:

Webnetwork is only as fast as your directory is. There are many different tuning techniques that you can use depending on the size of your eDirectory tree. 

Directory caching is only useful for users logging into webNetwork. What this does is cache their user object information for a period of time. When webNetwork needs some info for that user, it checks the time stamps in the cache vs the time stamps in the directory and if they have not changed, then it reads it out of cache. 

The LDAP indexes can help tremendously on LDAP Reads, this can indirectly help writes if the application needs to re read the data prior to the write. 

On the stoneware website, there is a tool in the download section that can help you get some numbers for ldap searches so that if you choose to do some of the tweaks on the Novell support site for tuning you can see if it helps. There are also some good references at www.novell.com/brainshare under the session catalog. They had several classes this year on large eDirectory servers and LDAP. 

If you are not using a login policy, then you want to make sure that you have an index set up on each LDAP server for eDirectory attribute ’Internet email address’ The normal login to webnetwork does a LDAP lookup for cn=someuser or mail=someuser. After one of the eDirectory updates, the OR in LDAP searches (not just webNetwork) almost always fails if you do not have an index for each of the attributes being searched. 

Also, another area to look at to increase LDAP performance is to read up on Predicate Data, which shows the count of the attributes being searched. That way you can see what other attributes you might need an index on. Remember that an Index is only specific to the LDAP server. Thus if you use multiple LDAP servers for failover, you need to make sure you that the index is the same on each server. 

One thing to check is that you do not have LDAP referrals configured to redirect a failed eDir search to and other eDir LDAP server. 


URLs of interest:

    Can't find the KB

    Unable to find the KB to address your issue ?  

      • Recent Articles

      • Change Reset Password Button Text

        Change the text of the "Reset Password" button on the UW Login Page How to change the text of the Reset Password button on the Login Page. Login to webNetwork and open webAdmin on your Relay Central Server Expand Customization Center Expand Tenants ...

      • Remove Reset Password Button From Login Page

        Remove the Reset Password Button from the Login Page How to remove the Reset Password button from the Unified Workspace login page. Login to webNetwork and open webAdmin on your Relay Central Server Expand Customization Center Expand Tenants Expand ...

      • Lenovo Unified Workspace End-of-Life Questions and Answers

        As of January 31st 2024, Lenovo Unified Workspace (formerly Stoneware WebNetwork) is no longer supported. This means that we no longer provide licenses, downloads, updates, patches, or technical assistance for this product. If you have any questions ...

      • How do I determine my Unified Workspace license expiration date?

        The best method for determining the licensing information including the expiration date of your Unified Workspace license: Login to your 8090 management console on each server This may take remoting into each LUW server and relay, opening a browser, ...

      • Lenovo Unified Workspace 7.0.2.13 Released

        Highlights of Unified Workspace 7.0.2.13 Before you install: Please view the installation notes here. 7.0.2.13 requires a 7.0 license file. Below is a list of enhancements and fixes released in Unified Workspace 7.0.2.13 Fixed external storage ...

      • Related Articles

      • How webNetwork authenticates against LDAP / AD / eDirectory

        webNetwork uses LDAP to talk to Microsoft Active Directory and Novell eDirectory.  It will do a search and the FIRST entry that matches is returned and the password supplied it tried against that user object.  webNetwork does not store the users ...

      • Novell SLES Pure FTP information

        Netware FTP had the ability to connect to a single ftp server running on netware and then change dir (cd) to another remote server. This used NCP. Suse Linux enterprise does not have this same feature in its FTP server. What can be done ? For Linux ...

      • Edirectory Attribute Indexes

        In edir, the search indexes are configured on EACH server object. They are not global settings so if you change the server that webNetwork uses then you will need to add the indexes to that server also.  Some of the commonly used attributes that ...

      • Enable directory cache to speed up login times.

        To help speed up things webNetwork has a feature called Directory Cache.  This is turned on in the 8090 console loader under Directory Services. Typically create a c:\stoneware\config\dircache and then set the cache dir to this path, and set the ...

      • Errors with GUID in the LDAP object name

        If you see errors like : Could not read attribute : CN=some-object-name\0aDEL:7dafdas3-23d-23c-8023-123212,ou=stoneware,dc=company,dc=com Basically, the object is in a state of deletion and may be stuck due to bad replication or a server being down.  ...