SAML Identity Assertion Performance Declines Over Time with WebLogic Server 10.3 and Later

(Doc ID 1366535.1)

Last updated on OCTOBER 06, 2014

Applies to:

Oracle Weblogic Server - Version 10.3 and later
Information in this document applies to any platform.

Symptoms

As identity assertion performance improves, the Identity Assertion provider is less responsive to changes in the configured Authentication provider.

After configuring a SAML 1.1 identity assertion provider for WebLogic Server (WLS), performance for making changes begins to deteriorate when changing the roles of a particular user.

In some instances, it might take 2-3 minutes for a change in permissions to take effect for a particular user. This indicates that there is some caching problem with the SAML assertions.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms