Environment
Novell Account Management 2.1 for Windows 2000
Novell Active Directory Driver
Novell ZENworks Configuration Management 11.2
Novell ZENworks Configuration Management 11.1
Novell ZENworks Configuration Management 11
Novell ZENworks Configuration Management 10
Novell Active Directory Driver
Novell ZENworks Configuration Management 11.2
Novell ZENworks Configuration Management 11.1
Novell ZENworks Configuration Management 11
Novell ZENworks Configuration Management 10
Situation
Unable to read more than 1000 entries from Active Directory using LDAP. Or unable to read more than 1500 attributes from Active Directory (example group member attribute)
The LDAP engine on Microsoft Active directory has default page size limit of 1000 results.
Resolution
This limit is configurable using a utility called ntdsutil.
Increase the MaxPageSize value in the LDAP policy.
For maximum attribute values increase set MaxValRange.
Log on to the Windows Server as an Administrator, start a command prompt and type the following:
C:\> ntdsutil
ntdsutil: ldap policies
ldap policy: connections
server connections: connect to server <WINDOWS_SERVERNAME>
Connected to <WINDOWS_SERVERNAME> using credentials of locally logged on user
server connections: q
ldap policy: show values
Policy Current(New)
MaxPoolThreads 4
MaxDatagramRecv 1024
MaxReceiveBuffer 10485760
InitRecvTimeout 120
MaxConnections 5000
MaxConnIdleTime 900
MaxActiveQueries 20
MaxPageSize 1000
MaxQueryDuration 120
MaxTempTableSize 10000
MaxResultSetSize 262144
MaxNotificationPerConn 5
ldap policy: set maxpagesize to ##### (for example, 50000)
ldap policy: commit changes
ldap policy: q
ntdsutil: q
Disconnecting from <WINDOWS_SERVERNAME> ...
C:\> ntdsutil
ntdsutil: ldap policies
ldap policy: connections
server connections: connect to server <WINDOWS_SERVERNAME>
Connected to <WINDOWS_SERVERNAME> using credentials of locally logged on user
server connections: q
ldap policy: show values
Policy Current(New)
MaxPoolThreads 4
MaxDatagramRecv 1024
MaxReceiveBuffer 10485760
InitRecvTimeout 120
MaxConnections 5000
MaxConnIdleTime 900
MaxActiveQueries 20
MaxPageSize 1000
MaxQueryDuration 120
MaxTempTableSize 10000
MaxResultSetSize 262144
MaxNotificationPerConn 5
ldap policy: set maxpagesize to ##### (for example, 50000)
ldap policy: commit changes
ldap policy: q
ntdsutil: q
Disconnecting from <WINDOWS_SERVERNAME> ...