I set up microsoft ldap authentication in grid control 12C. I could see some users imported from Active directory in grid control. However total number of users imported are only 1000 where as my active directory has more than 1000 users.
Is there any config file I have to edit or change to increase this limit of users in weblogic ?
I had the same problem for an application in a Weblogic Server. Seems to be an AD issue. If I remember well, AD will return a maximum of 1000 users. I solved it by creating a "filter", meaning only return users the belong to a certain group. As an example: dc=Cloudcontrol
I take it you don't want all 1000+ users to be able to access EM 12c?
See Oracle® Enterprise Manager Cloud Control Administrator's Guide 12c chapter: Configuring Security, Configuring WebLogic Server Authentication
The limit is imposed on the AD server and not on the weblogic provider (which is a ldap query client) Some links on how to do that. The AD admin needs to change the PageSize and SizeLimit properties on the AD server.
Thank you, you wonderfull people for your help. I got the authentication setup. However, the authentication works with full name only, I need it to work with my login name.
e.g my full name in Directory is Kunal Narkhede. however I login with name as kn00024 as my id. but in grid now its accepting Kunal Narkhede as username but not kn00024.. so to what value should I set the User Name Attribute: to?
If you want to use the login name instead of the Account Name (which is typically First Last) then you’ll need to set the User From Name Filter and User Name Attribute as follows:
User Name Attribute: sAMAccountName
User From Name Filter: (&(sAMAccountName=%u)(objectclass=user))