Uploaded image for project: 'Runtime'
  1. Runtime
  2. RUNTIME-4060

LDAP group directory fails with 500+ groups on AD

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Invalid
    • Icon: Critical Critical
    • 4.8.2, 4.7.15, 4.9.0
    • 4.8.1
    • None
    • None
    • 4.9.0 M1

      I  have an AD server with more than 500 groups, then groups are not listed in group directory tool. And I have got this error : 

      javax.naming.OperationNotSupportedException: [LDAP: error code 12 - 00002040: SvcErr: DSID-0314043C, problem 5010 (UNAVAIL_EXTENSION), data 0 ]; remaining name 'OU=TOTO' at java.naming/com.sun.jndi.ldap.LdapCtx#mapErrorCode:3320 at java.naming/com.sun.jndi.ldap.LdapCtx#processReturnCode:3206 at java.naming/com.sun.jndi.ldap.LdapCtx#processReturnCode:2997 at java.naming/com.sun.jndi.ldap.LdapCtx#searchAux:1875 at java.naming/com.sun.jndi.ldap.LdapCtx#c_search:1798 at java.naming/com.sun.jndi.ldap.LdapCtx#c_search:1815 at java.naming/com.sun.jndi.toolkit.ctx.ComponentDirContext#p_search:418 at java.naming/com.sun.jndi.toolkit.ctx.PartialCompositeDirContext#search:396 at java.naming/com.sun.jndi.toolkit.ctx.PartialCompositeDirContext#search:378 at java.naming/javax.naming.directory.InitialDirContext#search:315 at org.ametys.core.util.ldap.AbstractLDAPConnector#_search:438 at org.ametys.core.util.ldap.AbstractLDAPConnector#_search:384 at org.ametys.plugins.core.impl.group.directory.ldap.LdapGroupDirectory#getGroups:708 at org.ametys.plugins.core.group.GroupSearchAction#_searchGroupsByContext:141

          [RUNTIME-4060] LDAP group directory fails with 500+ groups on AD

          Olivier Gehin made changes -
          Status Original: Resolved [ 5 ] New: Closed [ 6 ]
          Raphaël Franchet made changes -
          Resolution New: Invalid [ 6 ]
          Status Original: Open [ 1 ] New: Resolved [ 5 ]

          Raphaël Franchet added a comment -

          The LDAP was configured to use SORT
          The server seems to support the sort control, and it works in many branches, but it looks like it is not supported in one branche.
          So uncheck the "support sort" repair the issue

          Raphaël Franchet added a comment - The LDAP was configured to use SORT The server seems to support the sort control, and it works in many branches, but it looks like it is not supported in one branche. So uncheck the "support sort" repair the issue
          Raphaël Franchet made changes -
          Assignee New: Raphaël Franchet [ raphael ]
          Raphaël Franchet made changes -
          Sprint New: 4.9.0 M1 [ 100 ]
          Raphaël Franchet made changes -
          Priority Original: Major [ 3 ] New: Critical [ 2 ]
          Raphaël Franchet made changes -
          Fix Version/s New: 4.8.2 [ 18990 ]
          Fix Version/s New: 4.7.15 [ 18980 ]
          Fix Version/s New: 4.9.0 [ 18880 ]
          Raphaël Franchet made changes -
          Summary Original: LDAP group directory fails with 500+ groups New: LDAP group directory fails with 500+ groups on AD

          Olivier Gehin added a comment -

          With apache directory studio the search could be done with a pagination by 500 

          Olivier Gehin added a comment - With apache directory studio the search could be done with a pagination by 500 
          Olivier Gehin made changes -
          Affects Version/s New: 4.8.1 [ 18881 ]

            raphael Raphaël Franchet
            ogehin Olivier Gehin
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: