Use Authorization Guidelines to Estimate Directory Searches

Installation Guides › Implementation Guide › Performance Tuning › Data Tier Performance › User Store Capacity Planning › How to Estimate a Sustained User Directory Search Rate › Use Authorization Guidelines to Estimate Directory Searches

A Policy Server makes a number of user directory requests to authorize a user. Some of the user directory requests are required to determine SOA Security Manager policy membership, while others are dependent on SOA Security Manager policy design. You can estimate the number of Policy Server requests that each authorization creates using the following guidelines.

One search/query for each SOA Security Manager policy in the application or policy domain.
Note: This guideline only applies to policies whose membership filter results in one or more user directory requests. For more information about the relationship between SOA Security Manager policy membership and user directory requests, see Policy Membership and Authorization Requests.
One search/query for each policy that is bound to a response that returns user attributes.
Note: For more information about the relationship between responses and user directory requests, see Responses and Authorization Performance.

Note: The user authorization cache can significantly reduce the number of authorization-related requests to user directories.

More information:

User Authorization Cache

Responses and Authorization Performance

Email CA Technologies about this topic