Layer7 Access Management

Tech Tip : CA Single Sign-On : SPS is slow to load Certificates at Start Time

  • 1.  Tech Tip : CA Single Sign-On : SPS is slow to load Certificates at Start Time

    Posted 09-21-2016 03:10 AM

    Issue :

     

    On the first request sent to the SPS server, the request takes
    1 mn 30 seconds to process. The SPS needs this time to
    load all certificates to communicate with the Backend Server.

     

    Environment :

     

    SPS 12.52SP1CR04 on RedHat 6 64bit

     

    Cause:

     

    Certificates involve encryption that needs entropy, not enough entropy on the system

     


    Resolution :

     

    The Red Hat operating system relies on entropy for its performance.
    On the OS, use the following command to make SPS using /dev/urandom
    instead of /dev/random :

     

    mv /dev/random /dev/random.org

     

    ln -s /dev/urandom /dev/random

     

    You can also look to run the rngd service in order to get enough
    entroy on /dev/random

     

    KD  : TEC1720318