Regarding aggregation in IDN from ADLDS(LDAP)

Hey Guys,

I have recently connected ADLDS using LDAP conector in IDN . But when i tried aggregating it aggregated the accounts in IDN but with an error . and many times when i scanned the acounts it gave me warning with 0 acounts scanned. Do someone know about it. i will put the screenshot.


And one more thing what is the recommendation status column in sources in IDN . I am getting error only in ADLDS source there.screenshot below

Hi,

Can you try to set the pageSize for the connector. Please check the Option 2 mentioned here Active Directory aggregation error: java.lang.RuntimeException: javax.naming.SizeLimitExceededException - Compass

Thanks,
Shailee

Hey Shailee,

Thanks for your response . But where should i use it in IDN and i am using LDAP connector. and the accounts are more than 1000 but it only read 1000 accounts.

BR,
Apoorv

Hi Apoorv,

Yes, it seems the default result size limit on ADLDS is 1000. So the ldap search won’t be able to return more than 1000 records per page.

Above error seems to be happening when the connector is requesting for more than 1000 records.

You can set the pageSize on the connector source using API.

So this is the drawback of LDAP connector that it can’t read more than that?? How can i do it using API if you could pls elaborate the steps?? thanks

can we use ADAM connector as well for ADLDS?

I don’t have a lot of experience with connecting to AD LDS, but there is a separate connector for it. Doc is here: https://documentation.sailpoint.com/connectors/microsoft/lightweight_directory_services/help/

In the UI when you set up the new source, the type is actually ADAM (legacy name).

Hey Patrick,

But can’t we do LDAP here. I have connected the same ADLDS with ADAM it is also getting connected but not fetching a single account from ADLDS.