How to monitor the server
Administrators and devops engineers have a number of options to monitor the service and performance of a Connect2id server:
- user sign-on activity, failed authentications and denied authorisations;
- active SSO sessions;
- access token issue;
- client registrations;
- session creation, retrieval and expiration;
- usage metrics about the individual OAuth 2.0 grants (code, implicit, refresh token, etc.).
Direct JMX monitoring of the Infinispan container and the individual caches / object maps in it, e.g. user sessions or caches authorisations.
The session store web API enables monitoring of how many and which users are currently online.
The authorisation store web API enables monitoring of the issued authorisations.
The persisted (LDAP) client registrations and long-lived authorisations can be examined with an LDAP client or browser, such as Apache Directory Studio.
- The server logs.