We are experiencing long delays and performance issues when authenticating the users against our Enterprise Active Directory from Advanced Auth. The UDS seems to be taking too long to bind and unbind from AD to query for the user logging in.
Release : 9.x
Components: AuthMinder(Arcot WebFort) CA Strong Authentication
RiskMinder(Arcot RiskFort) CA Risk Authentication
Active Directory has referrals enabled and UDS follows the referrals by default, in this scenario we have seen UDS taking longer as AD is following the referrals.
Active Directory Referrals
We have made changes in the product to not follow the AD referrals as this has caused issues when a user lookup is done. Please follow the below suggestion to enable it.
Add a flag like following in the arcotcommon.ini, You can add this section at the bottom of the arcotcommon.ini file :
[arcot/extn]
LDAP_REFFERAL_IGNORE_FLAG=ignore
This needs a restart so apply the changes in all server one at a time and restart the application server hosting the UDS service. Strong Auth and Risk Auth services need to restarted as well.
You can follow the below KB article for proper stop/start sequence.