Great, thanks for the help.
Christopher Bodnar Enterprise Architect I, Corporate Office of Technology:Enterprise Architecture and Engineering Services Tel 610-807-6459 3900 Burgess Place, Bethlehem, PA 18017 [email protected] The Guardian Life Insurance Company of America www.guardianlife.com From: Brian Desmond <[email protected]> To: "[email protected]" <[email protected]> Date: 06/19/2013 12:54 PM Subject: RE: [NTSysADM] 5000 attributes in LDAP response Sent by: [email protected] Correct. This is only an issue if you had it set to >5000. You are at the default. Thanks, Brian Desmond [email protected] w – 312.625.1438 | c – 312.731.3132 From: [email protected] [ mailto:[email protected]] On Behalf Of Christopher Bodnar Sent: Wednesday, June 19, 2013 11:39 AM To: [email protected] Subject: RE: [NTSysADM] 5000 attributes in LDAP response The default: MaxValRange 1500 So this should not be an issue? Thanks Christopher Bodnar Enterprise Architect I, Corporate Office of Technology:Enterprise Architecture and Engineering Services Tel 610-807-6459 3900 Burgess Place, Bethlehem, PA 18017 [email protected] The Guardian Life Insurance Company of America www.guardianlife.com From: Brian Desmond <[email protected]> To: "[email protected]" <[email protected]> Date: 06/19/2013 12:14 PM Subject: RE: [NTSysADM] 5000 attributes in LDAP response Sent by: [email protected] What’s MaxValRange set to on your DCs? Thanks, Brian Desmond [email protected] w – 312.625.1438 | c – 312.731.3132 From: [email protected] [ mailto:[email protected]] On Behalf Of Christopher Bodnar Sent: Wednesday, June 19, 2013 10:13 AM To: [email protected] Subject: RE: [NTSysADM] 5000 attributes in LDAP response In our current 2003 domain? No. we have the defaults. If you have seen it before, can you share the name of the applications that gave you issues? Thanks, Christopher Bodnar Enterprise Architect I, Corporate Office of Technology:Enterprise Architecture and Engineering Services Tel 610-807-6459 3900 Burgess Place, Bethlehem, PA 18017 [email protected] The Guardian Life Insurance Company of America www.guardianlife.com From: Brian Desmond <[email protected]> To: "[email protected]" <[email protected]> Date: 06/19/2013 10:58 AM Subject: RE: [NTSysADM] 5000 attributes in LDAP response Sent by: [email protected] Did you change the defaults in your org? I’ve seen this before – it comes up periodically. Thanks, Brian Desmond [email protected] w – 312.625.1438 | c – 312.731.3132 From: [email protected] [ mailto:[email protected]] On Behalf Of Christopher Bodnar Sent: Wednesday, June 19, 2013 8:40 AM To: [email protected] Subject: [NTSysADM] 5000 attributes in LDAP response In pre-planning stages for upgrading our domain to 2008 R2 (currently 2003 R2). As I'm gathering the list of potential issues, I found this: http://support.microsoft.com/default.aspx?scid=kb;en-US;2009267 and this: http://blogs.technet.com/b/qzaidi/archive/2010/09/02/override-the-hardcoded-ldap-query-limits-introduced-in-windows-server-2008-and-windows-server-2008-r2.aspx Both of which I understand. What I was wondering .... has anyone actually run into an issue with an application for this? If so can you let me know which ones? We have so many applications here that query AD via LDAP, it's going to be very difficult to find them all and ask the vendors if this will be an issue. Also has anybody modified the schema as indicated in the second article due to this issue? I really would like to avoid that if possible. Thanks Christopher Bodnar Enterprise Architect I, Corporate Office of Technology:Enterprise Architecture and Engineering Services Tel 610-807-6459 3900 Burgess Place, Bethlehem, PA 18017 [email protected] The Guardian Life Insurance Company of America www.guardianlife.com ----------------------------------------- This message, and any attachments to it, may contain information that is privileged, confidential, and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, you are notified that any use, dissemination, distribution, copying, or communication of this message is strictly prohibited. If you have received this message in error, please notify the sender immediately by return e-mail and delete the message and any attachments. Thank you.
<<image/jpeg>>
<<image/jpeg>>
<<image/jpeg>>
<<image/jpeg>>
