访问LdAPS服务器时SANtricity超时
适用场景
- SANtricity 系统管理器
- LdAPS (安全LDAP)
- 单向信任域
问题描述
- 在 LAPS身份验证中观察到高延迟/超时
- 使用常规LDAP时未发现问题
- webserver-trace-logs-will show:
2023-10-20 13:36:14,110 INFO [jetty-253795] c.n.e.a.r.s.LdapImpl [LoggingFilter.java:416] [requestId=165ab4d6-7092-4106-990c-b7e8c439ac92, deviceId=1] {"authId":"64E85ABC5ED718AA07FDF7FD385596DD46D53F4315C312FEB2182C1B","authType":"localAccount","resource":"/devmgr/v2/storage-systems/1/ldap/test","remoteAddress":"10.xxxxxx","method":"POST","query":null,"status":"200","executionTime":"10046"}
2023-10-20 13:36:25,532 WARN [jetty-253864] c.n.e.a.d.LdapConfigChangeService [LdapConfigChangeService.java:504] [requestId=24cb5063-b59e-4ec9-88e7-4f9bd339ad47, deviceId=1] Communication exception while testing LDAP domain
java.net.SocketTimeoutException: Read timed out
- 数据包跟踪将显示从发出存储控制器
ChangeCipherSpec
到LDAP服务器响应之间的延迟超过10秒。