I’ve searched and found a few topics on this but did not seem to find a real solution.
Using: rhel+openldap w/proxy configuration to active directory.
Problem: first login takes 30-40 seconds.
I’ve tweaked the ldap caches as best I could but it still seems to not matter. I can run ldapsearch on the rhel host directly and they take seconds (5 or so) but openfire seems to take a LOT longer.