How do I modify the number of Active Directory objects to search?
Active Directory Management Software will be part of Spiceworks’s 5.0 release in Sept 2010. Spiceworks’ Active Directory will let you manage user accounts and passwords, link devices to specific users, and view all help tickets opened by a specific user. All for free!
Download Spiceworks 4.7 now, and you’ll be automatically alerted when Spiceworks 5.0 is available - and it will still be free!
By default, the Windows 2000 Active Directory searches 10,000 objects at a time. This policy affects all browse displays associated with AD, the Microsoft Management Console (MMC) Active Directory Users and Computers snap-in, and the dialog boxes you use to set permissions for user or group objects in AD. As your organization grows, you might need to change the number of objects to search.
To set the number for a group policy object:
- Start the MMC Active Directory Users and Computers snap-in.
- Right-click the container, and select Properties.
- Select the Group Policy tab.
- Select the Group Policy Object, and select Edit.
- Select the User Configuration branch, and expand Administrative Templates > Desktop > Active Directory.
- Double-click Maximum size of Active Directory searches.
- Select Enabled, and set the number (e.g., 20000).
- Click Apply.
- Click OK.
- Close the Group Policy Editor.
To edit the registry to set the number for a user:
- Start regedit.
- Go to the
HKEY_CURRENT_USER\Software\Policies\Microsoft |
registry entry.
- From the Edit menu, select New > Key.
- Enter
Windows
- Select the new Windows key, and from the Edit menu, select New, Key.
- Enter
Directory UI
- Go to the Directory UI key, and from the Edit menu, select New, DWORD Value.
- Enter
QueryLimit
and press Enter.
- Double-click the new value, and set the decimal value (i.e. 20000).
- Click OK.
- Close the registry editor.
For both methods, the change will take effect when the user logs on the next time.
