How to configure connection timeout in JNDI provisioning connector in Identity Manager

book

Article ID: 141334

calendar_today

Updated On:

Products

CA Identity Manager CA Identity Governance CA Identity Portal CA Identity Suite

Issue/Introduction

Identity Manager documentation explains how to change JNDI connector configuration in this document ('Configuring additional JNDI Connector.xml properties' section):

https://techdocs.broadcom.com/content/broadcom/techdocs/us/en/ca-enterprise-software/layer7-identity-and-access-management/identity-management-and-governance-connectors/1-0/connectors/dynamic-connectors-connector-xpress/creating-connectors/how-to-create-and-deploy-connectors.html

The document however does not explain how to change a timeout value for connections between JNDI connector and LDAP endpoints

Environment

Release : any

Component : Identity Manager JNDI connector

Resolution

Identity Manager JNDI connector  is Oracle JNDI API based and therefore accepts Oracle JNDI parameters.

This Oracle doc explains JNDI connection timeout values:

https://docs.oracle.com/javase/8/docs/technotes/guides/jndi/jndi-ldap.html

To change connector timeout values the 'jndiEnv' property in the sample connector config file should be modified to include Oracle JNDI settings.

Out of the box SAMPLE.connector.xml (on Windows default location is: C:\Program Files (x86)\CA\Identity Manager\Connector Server\jcs\conf\override\jndi\SAMPLE.connector.xml) has this section:

                <property name="jndiEnv">
                    <!-- Any values set here override defaults in the code -->
                    <map>
                        <entry key="java.naming.factory.initial">
                            <value>com.sun.jndi.ldap.LdapCtxFactory</value>
                        </entry>
                    </map>
                </property>
 

it should be modified like this to add 'com.sun.jndi.ldap.connect.timeout' setting:

                <property name="jndiEnv">
                    <!-- Any values set here override defaults in the code -->
                    <map>
                        <entry key="java.naming.factory.initial">
                            <value>com.sun.jndi.ldap.LdapCtxFactory</value>
                        </entry>
                   <!-- Configuring 50 seconds connection timeout -->
                       <entry key="com.sun.jndi.ldap.connect.timeout">
                           <value>50000</value>
                        </entry>
                    </map>
                </property>
 
Modified connector.xml is attached to this article
 

Attachments

1575582553597__connector.xml get_app