Application Development Discussions
Join the discussions or start your own on all things application development, including tools and APIs, programming models, and keeping your skills sharp.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

LDAP sync with AD

Former Member

‎08-17-2007 7:24 PM

0 Kudos

Is it possible to sync data with users in a group?

Our AD structure separates users by their location, so it's quite a bit of work setting this up to sync. We do have a group setup which contains all or our SAP users.

In this example SAP USERS is a group.

CN=John Doe,OU=SAP USERS,OU=Security and Distribution,OU=Groups,DC=d1c

Transaction LDAP fails to find record for John Doe, so I have to use

CN=John Doe,OU=Users, OU=Texas,DC=d1c

Any help is appreciated.

2 REPLIES 2

Former Member

‎08-17-2007 8:55 PM

0 Kudos

I think I know what you're problem may be.. There is a hard limit or 1000 results for a LDAP search against active directory. And I think you're hitting this limit. One way to test is to narrow your search to one small OU with only 10 users in the OU.

This setting can be changed at the controller and is called "MaxValRange". here's a link to more info http://support.microsoft.com/kb/315071

Before you make this change on your domain controller I'd try narrowing the search to a single OU first.

Former Member
In response to Former Member

‎08-21-2007 7:53 PM

0 Kudos

No.

I'm trying to use a User Group to serve as base entry in transaction LDAP.

I guess SAP expects the base to always be a OU.