Is there a size limit for LDAP User Groups that might limit the number of members that are shown or allowed? We have a group with almost 5000 members and cannot find a specific user. However using other methods outside of Matrix to search for that user we can easily find her and know she is in that group.
The group details screen says there are 4500 values, but we know the group has 4566 members. Is 4500 the limit?
Hi Nic,
I'm taking a quick look to see if there's something we need to raise as an issue. I don't believe there's a limit, however our LDAP wrapper in Matrix pages through "member"-type attributes at 500 entries at a time. If it's stopping at the end of a page like that (at 4,500) and not giving you that tenth page, then this is something that we'll have to try and reproduce here.
We'll look to keep you posted. Thanks for the report.
You may find that certain versions of active directory can only return max 2000 objects at one level.
Are your 4566 members in the one same group?
Can you find the person you're looking for by doing a search in the backend in this format? <bridgeassetID>:<userDN>
You may find that certain versions of active directory can only return max 2000 objects at one level.
Are your 4566 members in the one same group?
Can you find the person you're looking for by doing a search in the backend in this format? <bridgeassetID>:<userDN>
Yes, they are all in the same group. And no, searching for that user just comes up with an "unknown user".
How many group members are visible under your ldap bridge?
Directly under the Bridge there are 3 groups, then groups inside of those.
I'm taking a quick look to see if there's something we need to raise as an issue. I don't believe there's a limit, however our LDAP wrapper in Matrix pages through "member"-type attributes at 500 entries at a time. If it's stopping at the end of a page like that (at 4,500) and not giving you that tenth page, then this is something that we'll have to try and reproduce here.
Luke, the manuals say:
Please note that the functionality of the LDAP Bridge within the Asset Map has a limitation of 1000 LDAP records on a single level. For example, two groups containing 800 users each will both function correctly in the Asset Map while a single group containing 1600 users will not.
Does this mean they just won't show more than 1000 in the Asset Map? Or that Matrix has a limitation of 1000? I thought it meant that pagination could not show more than 1000 at a time.
Directly under the Bridge there are 3 groups, then groups inside of those.
How many members of each group?
Luke, the manuals say:
Does this mean they just won't show more than 1000 in the Asset Map? Or that Matrix has a limitation of 1000? I thought it meant that pagination could not show more than 1000 at a time.
If you can't find the missing persons in matrix by searching for the bridgeID:userDN; then this 'limitation' is not the issue. Even if the asset map can't list past 1000, you will (from my experience) still be able to search for the userDN directly.
I suggest you liaise with your active directory administrators to run some backtraces to see if there's any limits on their end causing you this issue.
How many members of each group?
Top level is three groups, then lots of groups under those.