Skip to Content.
Sympa Menu

grouper-users - Re: [grouper-users] I dislike Active Directory

Subject: Grouper Users - Open Discussion List

List archive

Re: [grouper-users] I dislike Active Directory

Chronological Thread 
  • From: "Michael R. Gettes" <>
  • To: Chris Hyzer <>
  • Cc: "Bryan E. Wooten" <>, "" <>
  • Subject: Re: [grouper-users] I dislike Active Directory
  • Date: Wed, 1 May 2013 18:33:08 +0000
  • Accept-language: en-US
  • Authentication-results:; dkim=neutral (message not signed) header.i=none

a fix for PSP provisioning into LDAP - GRP-882 :-)

(you asked)


On May 1, 2013, at 12:31 PM, Michael Gettes <> wrote:

For planning purposes, dare i ask, when will 2.1.4 hit the streets?

I realize nothing is guaranteed in life so any ball park would be appreciated.


On Apr 30, 2013, at 2:17 PM, Chris Hyzer <> wrote:

Yeah, this is a release candidate and that file in the installer that says where to download wasn’t changed yet.  I just did this, retagged, rebuilt, copied to the release folder, can you download the installer and try again?  Sorry about that
From: Bryan E. Wooten [] 
Sent: Tuesday, April 30, 2013 2:06 PM
To: Chris Hyzer; 
Subject: RE: I dislike Active Directory
Thanks Chris,
I missed that email, my apologies.
I downloaded the 2.1.4 stuff in your link and ran the installer. It seems to have downloaded and created a bunch of 2.1.3 directories and tar files. I assume I need to untar the 2.1.4 stuff I downloaded then build them manually?
From: Chris Hyzer [] 
Sent: Tuesday, April 30, 2013 7:03 AM
To: Bryan E. Wooten; 
Subject: RE: I dislike Active Directory

I fixed this for you in the unreleased 2.1.4 (sent an email a while ago about it):

You will need the latest snapshot:


From:  [] on behalf of Bryan E. Wooten []
Sent: Monday, April 29, 2013 4:47 PM
Subject: [grouper-users] I dislike Active Directory

Here I go again. I am trying to create a groups from attributes. (we have an attribute called uuemployee and I want to create a group of uuCurrentEmployee).
This group definition works fine against LDAP but when I point at AD I only get 859 members, but the result should be over 30k.
I have tried changing this:
ldap.personLdap.batchSize = 800
ldap.personLdap.countLimit = 600000
ldap.personLdap.timeLimit = 600000
But it has no effect on the results.
Can someone send me their sanitized and that actually work with large AD datasets?
When I use same AD account in my Softterra LDAP browser I can read everything, so I don’t think it is an AD configuration issue.

Archive powered by MHonArc 2.6.16.

Top of Page