I’ve configured our Rancher server to use our AD LDAP for authentication.
This works, but the initial login takes a very long time – like 30sec or more! After connecting, all seems to work, but I suspect group selection in the ‘Edit Environment’ is also affected by the same thing because it seems to go on forever.
We have a very large AD – many thousands of groups, though my user is only in fifty or so – and about 50 thousand user objects. I don’t know if this is related to the issue. Other applications are working find, though I have come across others in the past that made an assumption on a small LDAP and needs to have additional filters defined.
Is this a known problem? Has Rancher LDAP integration been tested with a very large LDAP? If scale is a problem, wouldit be possible to add configurable filters to restrict to a certain subset of groups/users?