incomplete ldap sync

[0x766C70]

Hi, (first, thanks for your tools !!) I have a ldap group of 1500 user and when the script ask my server for synchronizing users, it only found 500 of them. [notice] LDAP connection established. [notice] 501 directory user(s) found. Any tip to identify the root cause of a partial sync ?

Pre-check:

• no firewall connection limits on my LDAP server
• if I relaunch the script several time, it is always the same 500 ldap users
• My LDAP work correctly for other usages.

Thanks a lot

[Adambean]

Hello, If there aren't as many results as expected:

• The query may be filtering particular users out. (You may need to broaden its scope.)
• The directory may be limiting the number of results per query. (Configuration in the directory.)

When the tool finds even one valid user from an established connection then firewalls won't be the problem.

It could also be a limitation of PHP's LDAP functions as described at this Stack Overflow thread. Internally the tool uses ldap_search() to execute a query then ldap_get_entries() to enumerate the query results. This tool does not set a size limit in its search but your directory server may impose a limit.

[0x766C70]

Hello @Adambean !

Big Thanks !!! Result limitation by own serveur !!!

Have a great day !!!

vlp