LDAP Query to show all users within multiple OUs,how to configure it in TeamCity?

I have a problem when I configued multiple OUs for "teamcity.users.base=" in ldap-config.properties.

OU=dev,OU=Users,OU=usa,dc=corp,dc=walmart,dc=com
OU=dev,OU=Users,OU=china,dc=corp,dc=walmart,dc=com
OU=dev,OU=Users,OU=canada,dc=corp,dc=walmart,dc=com

1, teamcity.users.base=OU=dev,OU=Users,OU=usa,dc=corp,dc=walmart,dc=com, it can work fine(1 OU), I get the result is ''[2009-11-28 19:42:19,547]  DEBUG -     jetbrains.buildServer.LDAP - Fetched users: empty" when I configue multiple OUs for teamcity.users.base at the same time,
  teamcity.users.base=OU=dev,OU=Users,OU=devOU=usa,OU=dev,OU=china,OU=canada,dc=corp,dc=walmart,dc=com

2, I also try to use the below,
teamcity.users.base=dc=corp,dc=corp,dc=walmart
but I got the exception message below,
....,DC=corp,DC=walmart,DC=com, Fatal error while LDAP users synchronization: Sizelimit exceeded ([LDAP: error code 4 - Sizelimit Exceeded]; nested exception is javax.naming.SizeLimitExceededException: [LDAP: error code 4 - Sizelimit Exceeded]; remaining name 'dc=corp,dc=walmart,dc=com')]

could you give me some guidance? I appriciate your help. thanks a million.

5 comments
Comment actions Permalink

Hi again James,

I think multiple OUs in teamcity.users.base are not supported.
As for SizeLimitExceededException: most probably it is happening because the filter isn't specific enough, so too many users are matched. Please take a look at http://youtrack.jetbrains.net/issue/TW-9610.


---
Maxim

0
Comment actions Permalink

thanks again, Maxim. good to know.

0
Comment actions Permalink

hi, Maxim

thanks, by the way, could you have a plan to support this funcition(query multiple OUs) in the following Release?

thanks,

James

0
Comment actions Permalink

Hi James,

In the nearest release (5.0) no, mainly because the base property is passed directly to JNDI level and JNDI doesn't support it.
But in 5.0 we have implemented the paging, so you can always set the common root of the DNs and everything would work.


---
Maxim

0
Comment actions Permalink

thanks, Maxim.

James

0

Please sign in to leave a comment.