Skip to content

Commit fe10944

Browse files
committed
NFSAAS-27975: ldap query timeout
1 parent 4907263 commit fe10944

File tree

2 files changed

+8
-0
lines changed

2 files changed

+8
-0
lines changed

articles/azure-netapp-files/create-active-directory-connections.md

Lines changed: 6 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -72,6 +72,12 @@ Several features of Azure NetApp Files require that you have an Active Directory
7272
7373
* LDAP queries take effect only in the domain specified in the Active Directory connections (the **AD DNS Domain Name** field). This behavior applies to NFS, SMB, and dual-protocol volumes.
7474
75+
* <a name="ldap-query-timeouts"></a> LDAP query timeouts
76+
77+
By default, LDAP queries time out if they cannot be completed in a timely fashion. If an LDAP query fails due to a timeout, the user and/or group lookup will fail and access to the Azure NetApp Files volume may be denied, depending on the permission settings of the volume.
78+
79+
Query timeouts can occur in large LDAP environments with many user and group objects, over slow WAN connections, and if an LDAP server is over-utilized with requests. Azure NetApp Files timeout setting for LDAP queries is set to 10 seconds. Consider leveraging the user and group DN features on the Active Directory Connection for the LDAP server to filter searches if you are experiencing LDAP query timeout issues.
80+
7581
## Create an Active Directory connection
7682
7783
1. From your NetApp account, select **Active Directory connections**, then select **Join**.

articles/azure-netapp-files/lightweight-directory-access-protocol.md

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -118,7 +118,9 @@ The following section discusses the basics of LDAP as it pertains to Azure NetAp
118118
contoso.com internet address = y.y.y.y
119119
```
120120
* LDAP servers can also be used to perform custom name mapping for users. For more information, see [Custom name mapping using LDAP](#custom-name-mapping-using-ldap).
121+
* LDAP query timeouts
121122
123+
By default, LDAP queries time out if they cannot be completed in a timely fashion. If an LDAP query fails due to a timeout, the user and/or group lookup will fail and access to the Azure NetApp Files volume may be denied, depending on the permission settings of the volume. Refer to [Create and manage Active Directory connections](create-active-directory-connections.md#ldap-query-timeouts) to understand Azure NetApp Files LDAP query timeout settings.
122124
123125
## Name mapping types
124126

0 commit comments

Comments
 (0)