-
Bug
-
Resolution: Fixed
-
Medium
-
1.6.1
-
None
-
None
-
4
-
For groups that contain over 1500 members AD returns the members in an attribute named member;range=0-1499, expecting the receiving application (Crowd) to do paging on the attribute values. Crowd does not recognize this attribute name, as it is expecting to find attributes called member. Because of this, group memberships cannot be resolved from the group side for large groups. The workaround for this issue is to use the Use the User Membership Attribute option.
The following are the consequences:
1-) To be able to use Crowd caching, the Use the User Membership Attribute must be enabled.
2-) Currently the LDAP caching supports groups with a maximum of 1499 users memberships.
The workarounds would be to:
1-) Disable caching (if using this workaround, to avoid performance issues, be sure the application side cache will timeout during out of peak hours or our of working hours).
2-) Create many directories and using filters, make sure they will have less than 1499 users each. This would allow to continue using LDAP caching.
| Form Name | |||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|