Jorge's Quest For Knowledge!

All About Identity And Security On-Premises And In The Cloud – It's Just Like An Addiction, The More You Have, The More You Want To Have!

(2005-12-09) How To Increase The rIDAvailablePool Of The Domain?

Posted by Jorge on 2005-12-09

For some reason (e.g. disaster recovery) you want to increase the rIDAvailablePool of the domain. So here how to do that.
* Start LDP
* -> Connection -> Connect
* Enter the FQDN of the RID Master FSMO or leave it blank if LDP is run on the RID Master FSMO
* Port = 389, Connectionless = unchecked, SSL = unchecked
* Click OK
* -> Connection -> Bind
* Enter a user account with at least domain admin permission and its password and its domain OR leave all blank if the logged on credentials have domain admins permissions
* Click OK
* -> View -> Tree
* Enter the DN of the domain NC for which you want to increase the domain RID pool OR leave blank to use the DN of the domain you are logged on to
* Click OK
* Navigate to CN=RID Manager$,CN=System,DC=<DOMAIN>,DC=<TLD>
* Doubleclick on CN=RID Manager$,CN=System,DC=<DOMAIN>,DC=<TLD>
* Rightclikc on CN=RID Manager$,CN=System,DC=<DOMAIN>,DC=<TLD>
* In the right screen copy the NAME of the attribute called rIDAvailablePool and insert that into field called "attribute:"
* In the right screen copy the VALUE of the attribute called rIDAvailablePool (e.g. 4611686014132423214) ADD the value YOU want to increase (e.g. 100000) and insert the total result (e.g. 4611686014132523214) into the field called "values:"
* For the operation check REPLACE
* Click on ENTER
* On the "Entrty List" you should see something like: "[Replace]rIDAvailablePool: 4611686014132523214" (without quotes)
* Check "Synchronous"
* Uncheck "Extended"
* Click on RUN
* Click on CLOSE
* Check the result on the right window. You should see something like:
***Call Modify…
ldap_modify_s(ld, ‘CN=RID Manager$,CN=System,DC=<DOMAIN>,DC=<TLD>’,[1] attrs);
Modified "CN=RID Manager$,CN=System,DC=<DOMAIN>,DC=<TLD>".
* Close LDP
The rIDAvailablePool is now increased
Make sure you test this FIRST in a TEST ENVIRONMENT!!!

* This posting is provided "AS IS" with no warranties and confers no rights!
* Always evaluate/test yourself before using/implementing this!
############### Jorge’s Quest For Knowledge #############
######### ########

3 Responses to “(2005-12-09) How To Increase The rIDAvailablePool Of The Domain?”

  1. Interesting, I recently came accross a problem whereby a DC was unable to obtain a RID. There were no other issues, only the 16650 error message. I didn’t try increasing the RID pool size at the time and wonder if this may have helped or not.

    In the end, I flattened the DC and started again.

    By the fequency of the error messages logged, it seemed the DC would poll to obtain a RID pool every 1/2 an hour.

  2. Well… if a DC cannot retrieve a new RID pool a few of possibilities exist:

    * RID master down / not available
    * RID master does not exist anymore
    * Network issues

    The increase of the RID pool COULD be necessary when you restore the RID master from backup

  3. hi fresh trick, very usefullthanks a lot

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: