mmb1
asked on
cfldap
I'm using CF 9.0 and when I query the ldap server, I'm only getting 1000 rows returned.
Here's my query:
<cfldap
server="my.ldap.server"
action="query"
name="lookupUsers"
start="DC=MY,DC=LDAP,DC=SE
scope="subtree"
filter="(&(cn=*#pusername#
delimiter=";"
separator="<br>"
attributes="distinguishedN
maxrows=32000
timeout="0"
sort="sn"
sortcontrol="asc"
username="user@my.domain"
password="xyz"
>
#lookupUsers.RecordCount# is always 1000.
Thanks!!
Here's my query:
<cfldap
server="my.ldap.server"
action="query"
name="lookupUsers"
start="DC=MY,DC=LDAP,DC=SE
scope="subtree"
filter="(&(cn=*#pusername#
delimiter=";"
separator="<br>"
attributes="distinguishedN
maxrows=32000
timeout="0"
sort="sn"
sortcontrol="asc"
username="user@my.domain"
password="xyz"
>
#lookupUsers.RecordCount# is always 1000.
Thanks!!
ASKER
I wish that were true. However, I have 32000 users in our AD. I've tried every solution Google has offered up and nothing gets me more than 1000 users.
Any other suggestions?
Any other suggestions?
ASKER
I should clarify, that if I perform the following (changing the filter), only 1000 records come back:
<cfldap
server="my.ldap.server"
action="query"
name="lookupUsers"
start="DC=MY,DC=LDAP,DC=SE
scope="subtree"
filter="(&(cn=*))"
delimiter=";"
separator="<br>"
attributes="distinguishedN
maxrows=32000
timeout="0"
sort="sn"
sortcontrol="asc"
username="user@my.domain"
password="xyz"
>
<cfldap
server="my.ldap.server"
action="query"
name="lookupUsers"
start="DC=MY,DC=LDAP,DC=SE
scope="subtree"
filter="(&(cn=*))"
delimiter=";"
separator="<br>"
attributes="distinguishedN
maxrows=32000
timeout="0"
sort="sn"
sortcontrol="asc"
username="user@my.domain"
password="xyz"
>
try with quotes around your maxrows="32000"
In my example filter earlier - where i wanted you to query for an example sAMAccountName - you should just get one record (or zero if it didn't exist) - did that happen or did you get 1000 records for that as well?
In my example filter earlier - where i wanted you to query for an example sAMAccountName - you should just get one record (or zero if it didn't exist) - did that happen or did you get 1000 records for that as well?
ASKER
I put in the quotes, and got the same results. Still just received 1000 rows back.
On the earlier query, I got one record back. To further check, I entered a value that shouldn't return a record and it worked correctly.
On the earlier query, I got one record back. To further check, I entered a value that shouldn't return a record and it worked correctly.
well - maybe you really only have 1000 records that MATCH the filter you are using.
modify the filter and you should get different results.
try matching something other than cn
modify the filter and you should get different results.
try matching something other than cn
ASKER
I have already tried that too. I tried a filter of sn=* and sAMAccountName=* and still only get back 1000 records. I have a total of 32,000+ users in my AD.
Acitve Directory Explorer asks me if I want it to continue searching after returning 1000 records.
Acitve Directory Explorer asks me if I want it to continue searching after returning 1000 records.
i guess i don't have any other suggestions - sorry ...
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ok - cool - I will remember this if I ever encounter ...
glad you got it!
glad you got it!
ASKER
The LDAP/AD configuration has configuration parameters set to guard against malice, and pagesize is one of them.
try modifying your filter.
(&(objectClass=user)(sAMAc