[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ldapsearch limit of 500 returned entries

To: charlie derr <cderr@simons-rock.edu>
Subject: Re: ldapsearch limit of 500 returned entries
From: Franky Van Liedekerke <liedekef@pandora.be>
Date: Tue, 4 Jun 2002 22:46:26 +0200
Cc: openldap-software@OpenLDAP.org
In-reply-to: <3CFD23C5.493A163E@simons-rock.edu>
References: <3CFD029C.1C0C7C20@simons-rock.edu> <001e01c20c01$54d522b0$7c640f0a@mfc.corp.mckee.com> <3CFD23C5.493A163E@simons-rock.edu>

<see below>

On Tue, 04 Jun 2002 16:32:05 -0400
charlie derr <cderr@simons-rock.edu> wrote:

> Sending this back towards the list (hope you don't mind, Fox), because i
> did 
> track down another clue -- using the slapcat command (instead of
> ldapsearch)
> as root did return the full number of entries ( > 500 )in the directory
> without 
> an error.  Perhaps this is what the man page means -- i would still like
> to
> have this functionality for ldapsearch as well.  I guess it's time to
> delve
> into the source and see if i can find a place to set it and try
> recompiling.
> 
> One other point of information -- before i added the 
> 
> SIZELIMIT	0 
> 
> to the three ldap.conf files (as i mentioned in the other message), none
> of these
> files previously had that variable set (it was commented out).  Just to
> be totally
> thorough (I was pretty certain it wouldn't work, but...) I set
> 
> SIZELIMIT	1000
> 
> just now and restarted, but i still get only 500 entries returned and
> the same
> error.
> 
> 	~c
> 
> Fox wrote:
> > 
> > Not posting this to the list, but I imagine that contrary to what the
> > man page says, the root user cannot override the server limit on
> > entries returned.  I can't imagine root being able to magically
> > override the server limit, especially considering ldapsearch is
> > supposed to be a generic ldap client for any, including remote, ldap
> > servers.
> > 
> > Fox
> > 
> > ----- Original Message -----
> > From: "charlie derr" <cderr@simons-rock.edu>
> > To: <openldap-software@OpenLDAP.org>
> > Sent: Tuesday, June 04, 2002 2:10 PM
> > Subject: ldapsearch limit of 500 returned entries
> > 
> > > I've looked in my ldap.conf and also in my slapd.conf, but i'm not
> > > finding where this is set.  The following from the ldapsearch
> > > manpage:
> > >
> > >       -z sizelimit
> > > retrieve at most sizelimit entries for a search.  A
> > > sizelimit  of  0  (zero) removes the ldap.conf limit.
> > > A server may impose a maximal sizelimit which
> > > only the root user may override.
> > >
> > >
> > > seems to indicate that i should be able to override, but
> > > even when i use "-z 0" as root user on the machine that the
> > > database lives on and bind as cn=admin, my output is 500 entries
> > > followed by:
> > >
> > > # search result
> > > search: 2
> > > result: 4 Size limit exceeded
> > >
> > > # numResponses: 501
> > > # numEntries: 500
> > >
> > >
> > >
> > > Do i have to recompile my slapd to get past this?  Or is there a
> > > setting in a conf (or other) file somewhere that i can modify to
> > > eliminate this error? 2.0.23
> > >
> > >
> > > thanx so much in advance,
> > > ~c
> 


Maybe some tips:

1) is the timelimit set? This one also causes a "size limit exceeded" error.
2) is the ldapsearch you try based on a indexed attribute? If not, you can bump into the timelimit restriction as well, and still get the "size limit exceeded" error.
3) do you try searching as the rootdn user (not root, but the rootdn entry configured in your slapd.conf file)? This one is not subject to sizelimit or timelimit restrictions.
4) you have to add "sizelimit 0" to slapd.conf, not to any other ldap.conf file.

Franky

References:
- ldapsearch limit of 500 returned entries
  - From: charlie derr <cderr@simons-rock.edu>
- Re: ldapsearch limit of 500 returned entries
  - From: charlie derr <cderr@simons-rock.edu>

Prev by Date: VB.NET and OpenLDAP
Next by Date: Re: ldapsearch limit of 500 returned entries
Index(es):
- Chronological
- Thread