Skip to main content
Documentation & User Guides | Fotoware

Login to FotoWeb is slow when using Active Directory integration

If you experience performance issues logging on to FotoWeb using Active Directory integration, these points can help you troubleshoot.

Note: Active Directory integration via LDAP in FotoWeb is set to End of Life from January 1st, 2024, and will be removed from our software in a future version. We strongly recommend switching your identity provider as soon as possible.

Fotoware currently supports a variety of other identity providers, such as Microsoft Entra ID (formerly Azure Active Directory), ADFS + SAML, or any other SAML 2.0 compatible provider, such as Okta, OneLogin, and many more.

Contact Fotoware Support or your Fotoware Partner if you need assistance migrating to a new identity provider.

Possible reasons

  • The domain controller is slow to respond.
  • Requests to a domain controller are timing out, maybe even deliberately, for security reasons.

How to debug performance issues logging in

Enable additional logging in FotoWeb

  1. Open the FotoWeb Settings app and go to Settings > System logging
  2. Set Application Trace Files to Debug.
  3. Select Save.


  1. Reproduce the problem.
  2. Locate the log file fotoweb.exe Script Processing.trace in the folder C:\ProgramData\Fotoware\FotoWeb\Operations\Logs.
  3. In the file, search for all lines containing "Search completed in" and with unusually high values (e.g., several seconds).
  4. Find the corresponding log message "Ldap search..." to locate the LDAP query that was slow.

Possible solutions

  • If only lookups of groups or domains that are unnecessary for FotoWeb user authentication are slow, then these queries can be added to the LDAP blacklist.
  • Otherwise, this is either an issue with the LDAP server (e.g., load balancing and one or more slow servers) or the network. It has to be resolved by the network administrator.