I have a problem using Domino LDAP to authenticate users using the Tomcat 5.0.x servlet container.
I am having a working configuration in Tomcat’s server.xml:
<Realm debug=“0” className=“org.apache.catalina.realm.JNDIRealm”
connectionURL="ldap://<server>:389/"
userPattern="cn={0}, o=MyOrg"
roleBase=""
roleName="mail"
roleSearch="(member={0})"/>
Our domino directory contains about 1000 groups. Logging in takes a minute or longer because Tomcat appears to download all “Roles” for the logged in user. In this case this means it seems to lookup all groups which contain the user name.
Any idea how to speed this up, either by a more clever query or by tuning the Domino server (6.5.1)?
I created a separate post for the idea that didn’t work (using groups with “/” in the name)
Any help appreciated.