We are experiencing long delays and performance issues when authenticating the users against our Enterprise Active Directory from Advanced Auth. The UDS seems to be taking too long to bind and unbind from AD to query for the user logging in. 

Release : 9.x

Components: AuthMinder(Arcot WebFort) CA Strong Authentication

RiskMinder(Arcot RiskFort) CA Risk Authentication

Active Directory has referrals enabled and UDS follows the referrals by default, in this scenario we have seen UDS taking longer as AD is following the referrals.

Active Directory Referrals   

We have made changes in the product to not follow the AD referrals as this has caused issues when a user lookup is done. Please follow the below suggestion to enable it.

Add a flag like following in the arcotcommon.ini, You can add this section at the bottom of the arcotcommon.ini file : 

[arcot/extn] 
LDAP_REFFERAL_IGNORE_FLAG=ignore 

This needs a restart so apply the changes in all server one at a time and restart the application server hosting the UDS service. Strong Auth and Risk Auth services need to restarted as well.

You can follow the below KB article for proper stop/start sequence.

Start/Stop sequence for Advanced Authentication components