Configuring an LDAP connection pool

An LDAP connection pool contains LDAP connections that the DataPower® Gateway can reuse to avoid establishing a new LDAP connection for each incoming LDAP request.

About this task

Configure an LDAP connection pool and assign it to an XML manager or an API gateway. To configure an LDAP connection pool, modify the following properties to meet your needs.
  • The time length in seconds that an LDAP connection can remain idle before the DataPower Gateway removes the connection from the LDAP connection pool.
  • The maximum number of LDAP connections in the LDAP connection pool for server:port:BindDN combinations.
  • Whether to reject an incoming LDAP request when the LDAP connection pool reaches the maximum pool size.
When you assign an LDAP connection pool to an XML manager, this LDAP connection pool is available to the following traditional DataPower services when they use this XML manager.
  • AAA policy
  • The ldap-search() and ldap-simple-query() LDAP extension functions.

Procedure

  1. In the search field, enter ldap.
  2. From the search results, click LDAP connection pool.
  3. Click Add.
  4. Define the basic properties - Name, administrative state, and comments.
  5. Optional: In the Idle timeout field, modify the duration in seconds that an LDAP connection can remain idle before the connection is removed from the pool. Enter a value in the range 1-86400. The default value is 120.
  6. Optional: In the Max pool size field, modify the maximum number of LDAP connections that can exist for a server:port:BindDN combination in the LDAP connection pool. Enter a value in the range 1-2000. The default value is 35.
  7. Optional: Set Reject on pool limit to control whether to reject an incoming LDAP connection when the LDAP connection pool reaches the maximum pool size. By default, incoming connections are accepted after the pool reaches its maximum size.
  8. Click Apply to save changes to the running configuration.
  9. Click Save to save changes to the persisted configuration.

What to do next

Assign the LDAP connection pool to a specific XML manager or API gateway.