On Fri, 2009-06-12 at 12:30 +0100, Matthew King wrote: > When nss-ldapd and slapd are on the same server and nss-ldapd is > configured to use ldapi:/// or ldap://127.0.0.1/ URIs, restarting > slapd if nslcd is running is very slow (but does eventually complete). > If nslcd is stopped first the restart of slapd proceeds as normal.
I've also seen this but haven't yet found a good solution for this. What happens is that when slapd starts it does a lookup to get the groups of the openldap user (the user running slapd). The normal timeout/retry mechanism then kicks in which causes the delay. A workaround (apart from stopping nslcd first) is to lower the reconnect_maxsleeptime value. If the connection to your LDAP server is reliable enough (e.g. on the same host) having something like 2 or 3 seconds here should be fine. Perhaps the default should be set lower (it is now 30 seconds). -- -- arthur - adej...@debian.org - http://people.debian.org/~adejong --
signature.asc
Description: This is a digitally signed message part
