12 seconds delay when accessing PAM with no internet access

book

Article ID: 125485

calendar_today

Updated On:

Products

CA Privileged Access Manager - Cloakware Password Authority (PA) PAM SAFENET LUNA HSM CA Privileged Access Manager (PAM)

Issue/Introduction

When accessing PAM server from a workstation that do not have internet access there is 12 seconds delay displaying a blank screen

When accessing PAM server from a workstation that do not have internet access there is 12 seconds delay displaying a blank screen.
Why is there such delay and how can I avoid it?

Environment

Accessing PAM Server from a workstation using PAM Client or Browser where there is no internet access.

Resolution

The reason why there is a 12 seconds delay is because PAM Client (or Browser) need to access http://checkip.amazonaws.com to find out the public IP address of the client.
This is required for the AWS integration.
When PAM Client or IE is used for accessing PAM Server without internet access, this request to http://checkip.amazonaws.com times out after 12 seconds and this will affect the load time of the PAM GUI.

There is no workaround other than providing internet access to the workstation that is accessing PAM Server.
You can also vote on an enhancement request to voice out to Product Management to optimize this public IP check to shorten the time required to check the public IP address.

Please vote on the following IDEA.
https://communities.ca.com/ideas/235738300-this-enhancement-request-was-from-00935401-pam-client-connecting-is-slow