LDAP connections over SSL are not pooled, meaning each operation acquires a new TCP connection as well as negotiating SSL. This significantly increases the time taken for operations like synchronization. This can also cause sluggish login times.

      Workaround for improving the Synchronization Time:
      Albeit not a workaround for the problem pooling connections, the following might improve the synchronization time:

      1. Edit the LDAP directory:
      2. On Use the User Membership Attribute, under Membership Schema Settings, please:
        1. Uncheck 'When finding the members of a group';
        2. Check 'When finding the user’s group membership'.
      3. Synchronize the directory.

      Workaround for improving the login time:
      The following can be added to force the JVM to pool SSL connections. Add the following line to your Apache Tomcat /bin/setenv.sh (setenv.bat for Windows) file. Revert the changes if we encounter any start-up issues or login times do not improve.
      On Linux:

      JAVA_OPTS="$JAVA_OPTS -Dcom.sun.jndi.ldap.connect.pool.protocol='plain ssl' -Dcom.sun.jndi.ldap.connect.pool.authentication='none simple DIGEST-MD5'"
      

      On Windows:

      JAVA_OPTS=%JAVA_OPTS% -Dcom.sun.jndi.ldap.connect.pool.protocol="plain ssl" -Dcom.sun.jndi.ldap.connect.pool.authentication="none simple DIGEST-MD5"
      

            [CONFSERVER-35735] Pool SSL LDAP connections

            Katherine Yabut made changes -
            Workflow Original: JAC Bug Workflow v3 [ 2896441 ] New: CONFSERVER Bug Workflow v4 [ 2989206 ]
            Owen made changes -
            Workflow Original: JAC Bug Workflow v2 [ 2787708 ] New: JAC Bug Workflow v3 [ 2896441 ]
            Status Original: Resolved [ 5 ] New: Closed [ 6 ]
            Owen made changes -
            Workflow Original: JAC Bug Workflow [ 2715904 ] New: JAC Bug Workflow v2 [ 2787708 ]
            Owen made changes -
            Symptom Severity Original: Major [ 14431 ] New: Severity 2 - Major [ 15831 ]
            Owen made changes -
            Workflow Original: Confluence Workflow - Public Facing - Restricted v5 - TEMP [ 2381932 ] New: JAC Bug Workflow [ 2715904 ]
            Katherine Yabut made changes -
            Workflow Original: Confluence Workflow - Public Facing - Restricted v5 [ 2274419 ] New: Confluence Workflow - Public Facing - Restricted v5 - TEMP [ 2381932 ]
            Michael Andreacchio made changes -
            UIS Original: 1
            Katherine Yabut made changes -
            Workflow Original: Confluence Workflow - Public Facing - Restricted v5.1 - TEMP [ 2230106 ] New: Confluence Workflow - Public Facing - Restricted v5 [ 2274419 ]
            Katherine Yabut made changes -
            Workflow Original: Confluence Workflow - Public Facing - Restricted v5 - TEMP [ 2187861 ] New: Confluence Workflow - Public Facing - Restricted v5.1 - TEMP [ 2230106 ]
            Katherine Yabut made changes -
            Workflow Original: Confluence Workflow - Public Facing - Restricted v5 [ 1915462 ] New: Confluence Workflow - Public Facing - Restricted v5 - TEMP [ 2187861 ]

              Unassigned Unassigned
              dunterwurzacher Denise Unterwurzacher [Atlassian] (Inactive)
              Affected customers:
              5 This affects my team
              Watchers:
              8 Start watching this issue

                Created:
                Updated:
                Resolved: