Happy Holidays! I've been desperately trying to gather the attribute length limits in AD (yes they exist). I believe I've finally found it. I had to go through the Net::LDAP::Schema source code to figure out how these queries are made and I found an extra attribute in the subschema object: extendedattributeinfo:
I ran an ldapsearch and was able to pull up this attribute: ldapsearch -b "cn=aggregate,cn=schema,cn=configuration,dc=vm-2k3,dc=com" -D [EMAIL PROTECTED] -w password -s base objectclass=subschema extendedattributeinfo Example value: extendedAttributeInfo: ( 2.5.4.4 NAME 'sn' RANGE-LOWER '1' RANGE-UPPER '64' PR OPERTY-GUID '417A96BFE60DD011A28500AA003049E2' PROPERTY-SET-GUID '54018DE4F8 BCD111870200C04FB96050' INDEXED ) My question I know sounds simple: Can these extra values be merged into the schema object (aliases, single-value, syntax etc)? I know this probably isn't following standards but it would be a neat feature to specify extra attributes to merge in. I will be more than happy to work with anyone on this. I can even provide the full ldif entry (probably wouldn't) be nice to post it to the list.. God I hope this makes sense. Thanks Eric
