-
Type:
Improvement
-
Resolution: Fixed
-
Priority:
Major - P3
-
Affects Version/s: None
-
Component/s: Networking, Security
-
Fully Compatible
-
v4.0, v3.6
-
Security 2018-12-17, Security 2018-12-31, Security 2019-01-14, Security 2019-01-28
-
(copied to CRM)
When enabling LDAP in the typical setting, mongod process is using the three separate TCP connections to the LDAP server(s) for every db.auth() command:
1. One (or more) connections for the sections in the security.ldap.userToDNMapping option with the ldapQuery predicates
2. A single connection to authenticate the user by using the bind operation
3. A single connection to obtain the list of groups for authorization.
I am wondering if we could create a single TCP connection during the step 1 or 2 and reuse it for the next steps without reestablishing connection every time for the particular thread (==session) in the server?
- is duplicated by
-
SERVER-38885 Log LDAP thread safety warning only once.
-
- Closed
-
- is related to
-
SERVER-37193 Implement connection pooling for the LDAP servers
-
- Closed
-
-
SERVER-33852 libldap is not threadsafe with NSS
-
- Closed
-
- related to
-
-
- Closed
-