Re: How do we override searchsizelimit and searchtimelimit
David Gersic
> Is there anyway to override these system-wide parameters on a
> per-account basis?
TID #10076616 is the reference for what follows.
My own testing says that search limits are bypassed if and only if the
bind user has Inheritted S rights to the NCP Server object. They _must_ be
inherited, not direct. But, the bind user still gets run through the
effective rights calculation. So it's possible to have a user with
limited access to the data, but that still bypasses the search limits.
I've read elsewhere that assigning S [Entry Rights] to the LDAP Group
Object will also bypass the search limits, but I have not confirmed this
myself.
--
---------------------------------------------------------------------------
David Gersic dgersic_@_niu.edu
Novell Knowledge Partner http://forums.novell.com
Please post questions in the newsgroups. No support provided via email.
Jim Willeke
simple Paged Results control.
-jim
On 10/21/2009 2:06 PM, raj chintalapati wrote:
>
> Hi,
>
> Is there anyway to override these system-wide parameters on a
> per-account basis? Our limits are currently set to 2000 for size limit
> and 300 seconds for time limit. These limits do not apply for admin
> accounts. However, I am looking for ways to override these limits for
> particular user ids (non admin accounts) so that when users bind using
> those specific ids, then they could perform searches without any
> limits.
>
> On Sun directory, these limits could be overridden from system-wide
> limits by adding size and time limit values as attributes to specific
> user entries.
>
> Thanks in advance for any insight.
>
>