Ldap timeout Code map refresh


I get a LDAP response read timeout on refreshing Code Map, but only on the Active Directory entitlements.

We have a group entitlement on the Active Directory driver with a large amount of groups, A normal code map refresh on our old
system has a running time of 5-10 minutes.
In our new installed User Application 4.0.2, the refresh is never waiting for the result from the Active Directory driver query,
it always timed out after 15 seconds.

I have tried to change the "com.novell.ldap.timeout" value, but only lower values (<15000 ms) do effect the codemap refresh timeout.
I see this error: "LDAP response read timed out, timeout used:-1ms."
In the TCP trace, I can see the Jboss-server is closing the connection, not the LDAP server.

Versions in Use:
NetIQ eDirectory 8.8.8
NetIQ Identity Manager 4.0.2 P6
NetIQ Identity Manager Roles Based Provisioning Module 4.0.2 Patch E
jboss on jre-7u79-linux-x64

Can there be an other reason for this 15 sec. timeout.

Parents Reply Children