Groups with over 1500 members...

[eddieramirez]

I'm having a problem with groups over 1500 members... Apparently they only return the first 1500 members and as a different field leaving the member array empty, which causes problems..

:member=>[], :"member;range=0-1499"=>[blah blah blah]

Any idea how to get around this?

[eddieramirez]

Actually, it looks like you want :memberof and not :member... I went ahead and tried it out, and while it works, it's really slow to iterate over the parent groups... and it doesn't even go above the parent group, which makes it incomplete.

Have you thought about using Net::LDAP::Filter.ex("member:1.2.840.113556.1.4.1941", user_dn).. which returns all nested groups?

[Arcath]

I have no way of testing this unfortunately, none of my domains have 1500 users in one group.

Is this fault happening both in finding a groups members and the groups an object is a member of?

[tedpennings]

I work somewhere with very large AD trees so I would be able to test this for you if you can give me a few lines of code or a couple tests that reproduce the issue.