Installation Guides › Implementation Guide › Performance Tuning › Data Tier Performance › User Store Capacity Planning › How to Estimate a Sustained User Directory Search Rate › Use Authentication Guidelines to Estimate Directory Searches

Use Authentication Guidelines to Estimate Directory Searches

A Policy Server makes a number of user directory requests to service each authentication request. Some of the user directory requests are required, while others can be avoided.

Estimate the number of Policy Server requests that each authentication creates using the following guidelines:

(Required) Two searches to authenticate each user:

• One search/query, per store, to identify the user
• One search/query to verify the user credentials

(Optional) Additional searches may be required depending on how you design policies:

• One search/query for each SOA Security Manager policy that is bound to a rule that fires when a user is authenticated (OnAuth rule).

  Note: For more information about configuring rules, see the [set the co variable for your book]. For more information about the relationship a rule has to a SOA Security Manager policy, see the [set the co variable for your book].

• One search/query for each SOA Security Manager policy that is bound to a response that returns user attributes.

  Note: For more information about responses and their relationship to rules, see the [set the co variable for your book].