hello. thanks for the time and effort.
It has come to our attention that when an application is doing an LDAP query results are no longer being seen. We found out that the query was requesting a group that had over 1000 members. After some research we found that the MaxPage size is 1000. The developers are asking us to change the value to a higher number. However after some more research most folks are saying to leave it as is...1000...which is the default for a windows 2008r2 domain controller. The issue I have read about is that it can cause an overload on the server if changed. The suggestion is we only change it to 2500. Will this pose a risk to the server? infrastructure? The reason being is otherwise it will require more development work and time to get around the default value of 1000.
http://support.microsoft.com/kb/315071
http://support.microsoft.com/kb/2009267
and this one that says it should not be changed...
http://jeftek.com/219/avoid-changing-the-maxpagesize-ldap-query-policy/
