LDAP Timing out intermittently in ALM?
Question ID: 108503

We are having an issue where the LDAP is timing out in our system intermittently. We have changed the time timeout settings to extend the possibility of it not disconnecting and yet after a period (it varies to so it is not easily reproduced or trouble shot) it disconnects and times out for the system.

The only way that we are able to re-establish the connection once this happens is to restart the entire application server as just stopping and restarting the services will not resolve the issue.

Have you any ideas regarding this or suggestions where we may look?


Marked as spam
Posted by (Questions: 379, Answers: 35)
Asked on July 17, 2018 2:25 pm
Answers (2)
Private answer

Hello HomerJ,
Since this is issue is only resolved during the restart of the server and not during the restart of the services, it would appear that the connectivity is being broken between the server itself and the LDAP server. I have seen this in the past where a LDAP load balancer was being introduced into the system and this was what appeared to be the culprit as removing the load balancer and then entering the various LDAP severs directly (essentially bypassing the LDAP load balancer) resolved the issue and stopped the random disconnects for that particular client.

If you are using ALM12,2x or newer versions the capability to add in multiple LDAP server directly into the LDAP settings is now possible and that may resolve your issue if this is applicable. Otherwise I would look into the path through a tracert or some IT assistance tools paired with the Windows and various logs to see when and what may be causing the disconnect/loss of connection with the LDAP server.

Hope this helps,

Marked as spam
Posted by (Questions: 0, Answers: 770)
Answered on July 17, 2018 2:34 pm
Thanks for the suggestions of where to look. We will look into your suggestions.
( at July 17, 2018 2:35 pm)
Private answer

Make sure all the IPs are connected with respect to LDAP servers. If you are using LDAP fully qualified domain name in the Directory provider URL in the LDAP settings page means all the IPS Withrespect to Directory provider URL must connect with port 389(LDAP) or 636(LDAPS).

If it's not connected to all the nslookup IP also make this intermittent authentication issue to users.

Marked as spam
Posted by (Questions: 6, Answers: 8)
Answered on November 23, 2021 5:03 pm

Welcome back to "EyeOnTesting" brought to you by Orasi Software, Inc.

Scroll to Top