You might not be able to import all users from the Active Directory source using LDAP sync. By default, in Active Directory, LDAP search returns only 1,000 objects. This issue is caused by a default setting in Active Directory that limits LDAP searches to 1,000 results.
To work around this issue, you can use the Ntdsutil.exe tool to modify the MaxPageSize value to expand or limit the search, depending on the size of the Active Directory tree.
For more information, see the Microsoft support article on How to view and set LDAP policy in Active Directory by using Ntdsutil.exe.
Admin users migrated to iPrint Appliance through LDAP Import cannot perform administrative tasks such as managing iManager. This is because the LDAP Import feature imports only the user names but not the passwords. iManager fails to authenticate AD users with no passwords.
When importing users from Active Directory environments, LDAP import fails to import the administrator user account.
The Active Directory administrator user is not required for iPrint Appliance. iPrint Appliance contains an in-built administrator account. The admin account of iPrint Appliance manages all users imported from Active Directory.