Hi Marc, This may impact results later on. The LDAP quesry is looking to get all the user/group mappings - so the paging error probably means you're getting the 1st 1,000 results only. This means - a valid user will likely get authenticated. However, they may not end up in the correct group for security policies - you'll be able to see this on the device CLI - all user/group mappings. Although it could be a big list to go through. The question is whether your 1,000+ results are all users or something different - e.g. groups. Filters on groups will help if there are a lot of groups being returned that you'll not use in security policy. Filter on users, if you can, to get only the <1,000 that you need - assuming you have less than 1,000 that will authenticate in this way. Of course, the above needs validating with checks on the CLI to see what you see. Thanks James
... View more