Timeout and core issues with XPSExplorer/XPSSweeper.

book

Article ID: 52539

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) AXIOMATICS POLICY SERVER CA Single Sign On SOA Security Manager (SiteMinder) CA Single Sign-On

Issue/Introduction

Description:

We have installed SiteMinder r12 SP2 from scratch and have timeout and core issues with XPSExplorer/XPSSweeper with a non empty policy store.

We tried to determine the source of the errors and it appears that the XPS tools generate an LDAP request with time limit set to 20s.

After 40s approx. XPS tool abandons the request and generates a "request timed out"

<Please see attached file for image>

Figure 1

Is this parameter hard coded?

We don't see any reason to limit time for ldap requests related to XPS tools, could you please explain?

Solution:

The LDAP search timeout is not hard-coded. You can modify the value of the LDAP search timeout by setting the following registry setting:

HKEY_LOCAL_MACHINE\SOFTWARE\Netegrity\SiteMinder\CurrentVersion\LdapPolicyStore\
SearchTimeout= 0x78;         REG_DWORD

Values should be put in hexadecimal. 0x78 represents 120 seconds.

Changes in the sm.registry takes effect after restarting the SiteMinder policy server service.

Environment

Release:
Component: SMPLC

Attachments

1558720998708000052539_sktwi1f5rjvs16vvu.gif get_app