Relationship between keystone performance backed by ldap and using ldappool is confusing
Bug #1842496 reported by
Lance Bragstad
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| OpenStack Identity (keystone) |
Triaged
|
Low
|
Vishakha Agarwal | ||
Bug Description
Keystone provides multiple configuration options for operators to setup LDAP connection pooling [0]. Connection pooling has the ability to increase performance by keeping LDAP connection open and available for use across threads within a single keystone process. It's not clear that these connections are shared only between threads and not processes. In a deployment with multiple processes defined that are all using a single thread per process, it's confusing to query LDAP connections and see they're less than the configured values in keystone.conf.
We could either improve the documentation to explain this relationship more clearly, elude to this behavior in the configuration help text, or both.
| Changed in keystone: | |
| importance: | Undecided → Low |
| tags: | added: docu ldap |
| tags: |
added: documentation low-hanging-fruit removed: docu |
| description: | updated |
| Changed in keystone: | |
| status: | New → Triaged |
| Changed in keystone: | |
| assignee: | nobody → Vishakha Agarwal (vishakha.agarwal) |
To post a comment you must log in.
