Re: [ActiveDir] dsget error

[Paul Williams]

It must be some kind of issue with the DS* tools.  I was using a combination of ADFIND and DSMOD last week to enable ~200,000 user objects (I forgot to set a password in a scrpit that created a bunch of objects and therefore had a shed load of objects with uac of 546) and it would die every time with that error after a couple of thousand objects.  I figured, but didn't look into it, it's something to do with the fact that DSMOD queries the DN you pass it to check for object type, etc. which means there's loads of queries hitting the DC (one for each mod).   This is why Joe's ADMOD (1.7) is going to be loads better, as he only does one extra query which means there's only n + 1 LDAP requests hitting the DC as opposed to n x 2 with DSMOD.     --Paul ----- Original Message ----- From: Brian Desmond To: ActiveDir@mail.activedir.org Sent: Wednesday, September 13, 2006 2:45 AM Subject: RE: [ActiveDir] dsget error The query is probably timing out.   Get Joe’s ADfind and run something like this:   Adfind –default –f “(&(objectCategory=person)(objectClass=user))” displayName samAccountName pwdLastSet   You can tag a –csv on there too   Thanks, Brian Desmond [EMAIL PROTECTED]   c - 312.731.3132   From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Clay, Justin (ITS) Sent: Tuesday, September 12, 2006 9:29 PM To: activedir@mail.activedir.org Subject: [ActiveDir] dsget error   Any time I try to run a large query using dsquery and dsget where I pipe it to a text file for output, I eventually get a “dsget failed:The server is not operational.” error from dsget. I’ve searched the Internet for this and seen posts from a couple of other people who have had this issue, with no resolution.   Am I doing something wrong? Am I stupid? (yes, I probably am) Am I missing some limitation of stdout?   Here’s the command I was using:   “dsquery user -name * -limit 0 | dsget -display -samid –pwdneverexpires”   Thnx, JC   ITS ENTERPRISE SERVICES EMAIL NOTICE The information contained in this email and any attachments is confidential and may be subject to copyright or other intellectual property protection. If you are not the intended recipient, you are not authorized to use or disclose this information, and we request that you notify us by reply mail or telephone and delete the original message from your mail system.