After starting an LDAP device group refresh that contains over 1000 devices, the UI becomes unresponsive. Pages take minutes to load, logins take a long time or can even fail.

Privileged Access Management 3.3.x, 3.4.0, 3.4.1, 3.4.2

When LDAP operations are done there is a very heavy toll placed on database updates.  For some customers, this causes replication lags to the extent that servers can become disabled for a while.

There is a MySQL configuration setting that affects replication speed.  We had it configured for the recommended setting for safety and integrity.  It turns out that because of the way we handle replication, the safety issues are not applicable.  And the setting for safety is also the slowest.

This is an issue with the mysql configuration that was fixed in the 3.4.3 version. If an upgrade to 3.4.3 cannot be performed at this time, open a case with support so an engineer can make the change to mysql in the current version.