powered by Jive Software

Why is SSL LDAP so slow?

I have my Openfire server using ActiveDirectory LDAP for authentication. If I use secure ldap the user/group summary pages load very very slowly. Nothing else seems to be affected, but the server is lightly utilized so issues may not be readily apparent. As soon as I set it back to insecure LDAP the user/group summary pages load in seconds.

There are no error apparent in the logs. Debug log looks exactly the same with ssl or without. Other applications perform well with secure LDAP to active directory, just not openfire.

Is there something I can do to speedup secure LDAP? Perhaps something I may have misconfigured?