Multithreading the KDC server - a design

[Sam Hartman]

>>>>> "Rahul" == Rahul Srinivas <srahul at novell.com> writes:

    Rahul> Hi Sam,
    >> I probably would have chosen approach 4.1 (not surprising since
    >> I suggested it).  We just haven't run into cases where KDC
    >> performance requires multiple CPUs at all.

    Rahul> There are many eDirectory deployments with more than 1
    Rahul> million objects in the directory. If such a deployment is
    Rahul> kerberized and each object is associated with a kerberos
    Rahul> principal, then the rate at which the KDC would have to
    Rahul> handle requests could become very high. BTW, in your
    Rahul> experience, what is the maximum rate at which the KDC has
    Rahul> to handle requests in current deployments ?

Are you really talking about a million user principals?  That seems
like a lot for a single site.  I'm assuing you probably have at least
one KDC per site.

But yeah, if you had a million users, and they all came in within an
hour every day, you would tend to get loads higher than what we're
used to seeing.