This section explains the performance test results and performance impact of enabling Advanced Session Assurance on authentication and sessions in Identity Server and Access Gateway.
Accessing Login Pages for the First Time: A delay occurs when a user accesses the login page for the first time after enabling Advanced Session Assurance. This delay is due to the downloading of initial login pages and associated Java Scripts to the browser. The subsequent requests will not be delayed as Java Scripts are cached in the browser during the first attempt.
Advanced Session Assurance Parameters: An additional delay may occur in the login performance if the following parameters are enabled for session assurance.
HTML5 Capabilities
System Fonts
Webgl Metadata
This delay is due to the client side browser processing for the additional parameters. These parameters do not impact the server side processing.
NOTE:For information about the test environment, see Test Environment: Advanced Session Assurance.
Use case: A user logs in to Identify Server ([https://<idp_url>/nidp/app/) continuously with the Secure Name Password form contract with Advanced Session Assurance configured at Identity Server.
With Session Assurance |
Without Session Assurance |
Performance Impact |
|
---|---|---|---|
Logins Per Second |
230 logins per second |
250 logins per second |
8% |
Number of Sessions |
~200 K sessions |
~200 K Sessions |
0 |
Use case: A user accesses the protected resource with the secure name password form contract when Advance Session Assurance is enabled for both Identity Server and Access Gateway.
With Session Assurance |
Without Session Assurance |
Performance Impact |
|
---|---|---|---|
Access Gateway requests Per Second |
130 requests per second |
160 requests per second |
18% |
Number of Sessions |
~200 K sessions |
~200 K Sessions |
0 |