Nsslapd-nagle, Nsslapd-outbound-ldap-io-timeout, Nsslapd-plug-in – Red Hat 8.1 User Manual

When an incoming SASL IO packet is larger than the nsslapd-maxsasliosize limit, the server
immediately disconnects the client and logs a message to the error log, so that an administrator can
adjust the setting if necessary.

This attribute value is specified in bytes.

Parameter

Description

Entry DN

cn=config

Valid Range

-1 (unlimited) to the maximum 32-bit integer value
(2147483647) on 32-bit systems

-1 (unlimited) to the maximum 64-bit integer value
(9223372036854775807) on 64-bit systems

Default Value

2000000 (2MB)

Syntax

Integer

Example

nsslapd-maxsasliosize: 5000000

2.3.1.79. nsslapd-maxthreadsperconn (Maximum Threads per Connection)

Defines the maximum number of threads that a connection should use. For normal operations where a
client binds and only performs one or two operations before unbinding, use the default value. For
situations where a client binds and simultaneously issues many requests, increase this value to allow
each connection enough resources to perform all the operations. This attribute is not available from the
server console.

Parameter

Description

Entry DN

cn=config

Valid Range

1 to maximum threadnumber

Default Value

5

Syntax

Integer

Example

nsslapd-maxthreadsperconn: 5

2.3.1.80. nsslapd-nagle

When the value of this attribute is off, the TCP_NODELAY option is set so that LDAP responses (such
as entries or result messages) are sent back to a client immediately. When the attribute is turned on,
default TCP behavior applies; specifically, sending data is delayed so that additional data can be
grouped into one packet of the underlying network MTU size, typically 1500 bytes for Ethernet.

Parameter

Description

Entry DN

cn=config

Valid Values

on | off

Default Value

off

Syntax

DirectoryString

Example

nsslapd-nagle: off

2.3.1.81. nsslapd-outbound-ldap-io-timeout

This attribute limits the I/O wait time for all outbound LDAP connections. The default is 300000
milliseconds (5 minutes). A value of 0 means that the server does not impose a limit on I/O wait time.

Parameter

Description

Entry DN

cn=config

Valid Range

0 to the maximum 32-bit integer value
(2147483647)

Default Value

300000

Syntax

DirectoryString

Example

nsslapd-outbound-ldap-io-timeout: 300000

2.3.1.82. nsslapd-plug-in

This read-only attribute lists the DNs of the plug-in entries for the syntax and matching rule plug-ins
loaded by the server.

2.3.1.83. nsslapd-port (Port Number)

This attribute gives the TCP/IP port number used for standard LDAP communications. To run SSL/TLS
over this port, use the Start TLS extended operation. This selected port must be unique on the host

4 0

Chapter 2. Core Server Configuration Reference