Novell Home

My Favorites

Close

Please to see your favorites.

Unable to read more than 1000 entries from Active Directory using LDAP

This document (7012565) is provided subject to the disclaimer at the end of this document.

Environment

Novell Account Management 2.1 for Windows 2000
Novell Active Directory Driver 
Novell ZENworks Configuration Management 11.2
Novell ZENworks Configuration Management 11.1
Novell ZENworks Configuration Management 11
Novell ZENworks Configuration Management 10

Situation

 Unable to read more than 1000 entries from Active Directory using LDAP.
 The LDAP engine on Microsoft Active directory has default page size limit of 1000 results.

Resolution

This limit is configurable using a utility called ntdsutil.
Increase the MaxPageSize value in the LDAP policy.

Log on to the Windows Server as an Administrator, start a command prompt and type the following:

C:\> ntdsutil
ntdsutil: ldap policies
ldap policy: connections
server connections: connect to server <WINDOWS_SERVERNAME>
Connected to <WINDOWS_SERVERNAME> using credentials of locally logged on user
server connections: q
ldap policy: show values

Policy                          Current(New)

MaxPoolThreads                  4
MaxDatagramRecv                 1024
MaxReceiveBuffer                10485760
InitRecvTimeout                 120
MaxConnections                  5000
MaxConnIdleTime                 900
MaxActiveQueries                20
MaxPageSize                     1000
MaxQueryDuration                120
MaxTempTableSize                10000
MaxResultSetSize                262144
MaxNotificationPerConn          5

ldap policy: set maxpagesize to ##### (for example, 50000)
ldap policy: commit changes
ldap policy: q
ntdsutil: q
Disconnecting from <WINDOWS_SERVERNAME> ...

Additional Information

Formerly known as TID# 10081596

Review the following documentation:


Change Log

17 Jun 13 - Shaun Pond - removed unwanted formatting, changed ldap to LDAP
06 June 2013 - Jared Brunson - Updated Situation and Resolution and added Additional Info.
06 June 2013 - Shaun Pond - Imported old TID

Disclaimer

This Support Knowledgebase provides a valuable tool for NetIQ/Novell/SUSE customers and parties interested in our products and solutions to acquire information, ideas and learn from one another. Materials are provided for informational, personal or non-commercial use within your organization and are presented "AS IS" WITHOUT WARRANTY OF ANY KIND.

  • Document ID:7012565
  • Creation Date:06-JUN-13
  • Modified Date:17-JUN-13
    • NovellZENworks Configuration Management

Did this document solve your problem? Provide Feedback