Just a thought, but what does your login-config.xml file look like?
If you had two LDAP login-modules defined for your application policy, with the first one flagged as "sufficient", then this behavior you describe would make sense. There would be two failed logins and only one successful one and both failed logins would result in very similar network traffic.
thanks for the reply :)
my login-config.xml looks like this (excluding the standard policies that were there when I set up the server)
<login-module code="com.caern.authentication.SecurityLoginModule" flag="required">
SELECT name FROM caern_role, caern_user WHERE caern_user.id=?
I dont use the sufficient flag anywhere so I guess it is not the point :(
com.caern.authentication.SecurityLoginModule is a decompiled version of LdapLoginModule with some enhanements that were nescessary.
Sorry for the post under a post, but editing is not permitted here..
I've created a simple application that uses a single class with main method and created there an LdapContext and unfortunately on failed login it also pops by 2... guess I have some LDAP server configuration bug, but I cant see there any "bump failed logins by 2 instead of 1" option...