Article ID: 2639348 - View products that this article applies to.
Search results always come back quite slowly the very first time you perform a search in a FAST Search Center site after a prolonged period of user inactivity. All subsequent searches come back quickly and at an acceptable level. Please note that this issue is not specific to FAST, the same behavior exists with
SharePoint Server 2010 while using the Enterprise Search Center.
Typically, this is caused by the amount of time used by SPCertificateValidator.Validate() method, whose role is to check the validity of the certificate used to encrypt communications with the Security Token Service (STS). This certificate can be found in the Local Computer\SharePoint store in the Certificates console. Note that this certificate is generated by SharePoint Root Authority. Unfortunately, this Certification Authority (CA) is not a part of the Root Certificate Trust that is trusted natively by Windows (the Trusted Root Certificates). Since it is not part of the Trusted Root Certificates, Windows tries to retrieve a current list of root certificates to verify the validity of the certificate with updated information.
If SPCertificateValidator.Validate() takes a long time, you should be able to see it either in the ULS logs or by using Developer Dashboard. See the More information sectionfor error messages in ULS.
Follow the workarounds listed below:
There should not be specific implications to SharePoint since we are using self-signed certs and manage them ourselves. The SharePoint certificates do have an expiry and we do have a health rule that watches for that IIRC and will warn the admin to update/re-roll them.
The main aspect to think through is for “other” certificates used on the box (like SSL certificates, certificates to trust download packages or for SAFER policy etc) which are issues from certificates chained to those in the TRC store.
See the following articles for more information
Error in the ULS logs
w3wp.exe SharePoint Foundation Monitoring b4ly High Leaving Monitored Scope (SPCertificateValidator.Validate). Execution Time=15064.2596346328
When activated, the Developer Dashboard appears at the bottom of a page and allows site owners and up to view the call stack, database query times, exception information in error messages, and loading events for web parts during page rendering. All of these allow you to pinpoint the bottleneck within your page and to quickly focus on the resolution. The recommended property value is OnDemand, which provides you the ability to toggle the dashboard on and off.
PowerShell (to enable)
PowerShell (to disable)
(http://go.microsoft.com/fwlink/?LinkId=151500)for other considerations.
Article ID: 2639348 - Last Review: March 11, 2013 - Revision: 6.0
Contact us for more help