Improve the performance of the one-time password system
by tuning the OTPProviderDynaCacheOTPStore component.
The OTPProviderDynaCacheOTPStore is the one-time
password store plug-in. It uses WebSphere® Application
Server object cache as its underlying storage.
The following one-time password modules use this store plug-in:
- MobileAuthCodeOTPModule: Stores one-time passwords
in the store.
- TOTPModule: Uses the store for one time use enforcement.
You can tune
OTPProviderDynaCacheOTPStore by using
two approaches:
- Tune the WebSphere Application
Server object cache
- The WebSphere Application
Server object cache that is used by OTPProviderDynaCacheOTPStore is itfim-otp.
You can tune this object cache by changing the size of the cache or
enabling disk offload.
See the WebSphere Application
Server documentation for more details.
- Tune how OTPProviderDynaCacheOTPStore uses the WebSphere Application Server
object cache
- The OTPProviderDynaCacheOTPStore retrieves the
one-time password from the WebSphere Application Server object cache
by polling. If the one-time password is not available, the OTPProviderDynaCacheOTPStore waits
for a certain amount time before it tries to retrieve the one-time
password again. This cycle continues until the one-time password is
available. If the one-time password is still not available after a
certain amount of time, OTPProviderDynaCacheOTPStore times
out.
You can configure the amount of time that the OTPProviderDynaCacheOTPStore waits
before trying to retrieve the one-time password again by setting the
runtime custom property DistributedMap.GetRetryDelay.
You
can configure the number of additional tries before the OTPProviderDynaCacheOTPStore timeouts
by setting the runtime custom property DistributedMap.GetRetryLimit.
See General properties for more details.