How to monitor the server

Administrators and devops engineers have a number of options to monitor the service and performance of a Connect2id server:

  1. A monitoring web API with over 100 metrics as well as a few health-checks for the LDAP connectors. The server may also be configured to make the metrics available via JMX. The metrics include:

    • user sign-on activity, failed authentications and denied authorisations;
    • active SSO sessions;
    • access token issue;
    • client registrations;
    • session creation, retrieval and expiration;
    • usage metrics about the individual OAuth 2.0 grants (code, implicit, refresh token, etc.).
  2. Direct JMX monitoring of the Infinispan container and the individual caches / object maps in it, e.g. user sessions or caches authorisations.

  3. The session store web API enables monitoring of how many and which users are currently online.

  4. The authorisation store web API enables monitoring of the issued authorisations.

  5. The persisted (LDAP) client registrations and long-lived authorisations can be examined with an LDAP client or browser, such as Apache Directory Studio.

  6. The server logs.