ADAM LDAP Performance Test
The Lightweight Directory Access Protocol (LDAP) is a directory service protocol that runs on a layer above the TCP/IP stack. It provides a mechanism used to connect to, search, and modify Internet directories. The LDAP directory service is based on a client-server model. The function of LDAP is to enable access to an existing directory. LDAP is one of the protocols used to query and modify items on the Active Directory server.
To monitor the interactions between clients and the AD server over LDAP, and to promptly capture slowdowns in LDAP searches and binds, use the ADAM LDAP Performance test.
Target of the test : An Active Directory or Domain Controller on Windows
Agent deploying the test : An internal agent
Outputs of the test : One set of results for every Active Directory site that is being monitored
Parameters | Description |
---|---|
Test period |
This indicates how often should the test be executed. |
Host |
The IP address of the machine where the Active Directory is installed. |
Port |
The port number through which the Active Directory communicates. The default port number is 389. |
Measurement | Description | Measurement Unit | Interpretation |
---|---|---|---|
Ldap searches |
Indicates the rate at which LDAP clients perform search operations. |
Searches/Sec |
This counter should show activity over time. If it does not, network problems are probably hindering the processing of client requests. |
Ldap writes |
Indicates the rate at which clients perform write operations on the AD server. |
Writes/Sec |
|
Ldap active threads |
Indicates the current number of threads in use by the LDAP subsystem of the local directory service. |
Number |
A high number indicates a high level of LDAP activity on the directory service. |
Ldap bind time |
Indicates the time, in milliseconds, taken for the last successful LDAP bind. |
Secs |
In Active Directory Domain Services, the act of associating a programmatic object with a specific Active Directory Domain Services object is known as binding. When a programmatic object, such as an IADs or DirectoryEntry object, is associated with a specific directory object, the programmatic object is considered to be bound to the directory object. This measure should be as low as possible. If it is not, hardware or network-related problems are indicated. |
Ldap sessions |
Indicates the number of currently connected LDAP client sessions. |
Number |
This measure is just an indicator of the number of Ldap clients connected to the Active Directory. A high or low value for this measure does not always denote an error situation. |
Ldap closed connections |
Indicates the LDAP connections that have been closed in the last second. |
Connections/Sec |
|
Ldap new connections |
Indicates the number of new LDAP connections that have arrived in the last second. |
Connections/Sec |
|
Ldap new ssl connections |
Indicates the number of new SSL or TLS connections that arrived in the last second. |
Connections/Sec |
|
Ldap successful binds |
Indicates the number of successful LDAP binds per second. |
Binds/Sec |
In Active Directory Domain Services, the act of associating a programmatic object with a specific Active Directory Domain Services object is known as binding. When a programmatic object, such as an IADs or DirectoryEntry object, is associated with a specific directory object, the programmatic object is considered to be bound to the directory object. A high value is desired for this measure. A very low value could indicate network problems. |