CA Access Gateway (SPS) Linux tuning how to
search cancel

CA Access Gateway (SPS) Linux tuning how to


Article ID: 44209


Updated On:


CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On SOA Security Manager (SiteMinder) CA Single Sign-On SITEMINDER


Trick and tips on how to tune CA Access Gateway (SPS) running on Linux.




CA Access Gateway (SPS) 12.8 on Linux;



First, the CA Access Gateway (SPS) has an Apache and Tomcat embedded modules. Here are indications about the parameters for tuning:

  • Apache
  • Apache Tomcat connector
  • Http client Connection Pool
  • JVM (1)

The best value will be obtained by benchmarking a test or QA environment, putting loads on it, and configuring and collecting full traces from each component.     

This will help to identify the bottlenecks.

Second, the section "Operating System Tuning for Agents" mentions some memory parameters.

They are addressed to the SunOS system. When running on Linux, consult the vendor documentation (Redhat or other) to tune some of them (2).

Often, the out of the box configuration is already enough for shared memory on Linux, which is not the case with SunOS systems.

That is the reason why only values for SunOS can be seen from that documentation section.

Third, when looking at a 64-bit RedHat 7 and RedHat 8 system, the default values are:

   Redhat 7


    Redhat 8


They are greater than the ones recommended for SunOS. Find more documentation about RedHat Operating System (3).

Finally, the CA Access Gateway (SPS) 12.8 documentation brings some sections about the tunable parameters for different embedded components (4)(5)(6).

Note that 'MaxClients' has been renamed to 'MaxRequestWorkers' in Apache 2.4.x (bundled with Access Gateway 12.8).


Additional Information


  1. CA Access Gateway (formerly Secure Proxy Server): Commonly Tuned Parameters
  2. Operating System Tuning for Agents


  4. Configure the Apache Settings Manually

  5. Configure the Proxy Service Settings Manually

  6. Configure the Tomcat Settings Manually